20#if COAP_WITH_LIBOPENSSL
75#include <openssl/ssl.h>
76#if OPENSSL_VERSION_NUMBER < 0x40000000L
77#include <openssl/engine.h>
79#include <openssl/err.h>
80#include <openssl/rand.h>
81#include <openssl/hmac.h>
82#include <openssl/x509v3.h>
84#if OPENSSL_VERSION_NUMBER >= 0x30000000L
87#pragma GCC diagnostic ignored "-Wdeprecated-declarations"
90#if !defined(__MINGW32__)
91#pragma warning(disable : 4996)
96#ifdef COAP_EPOLL_SUPPORT
97# include <sys/epoll.h>
100#if OPENSSL_VERSION_NUMBER < 0x10100000L
101#error Must be compiled against OpenSSL 1.1.0 or later
105#define strcasecmp _stricmp
106#define strncasecmp _strnicmp
110#ifndef TLSEXT_TYPE_client_certificate_type
111#define TLSEXT_TYPE_client_certificate_type 19
113#ifndef TLSEXT_TYPE_server_certificate_type
114#define TLSEXT_TYPE_server_certificate_type 20
117#ifndef COAP_OPENSSL_CIPHERS
118#if OPENSSL_VERSION_NUMBER >= 0x10101000L
119#define COAP_OPENSSL_CIPHERS "TLSv1.3:TLSv1.2:!NULL"
121#define COAP_OPENSSL_CIPHERS "TLSv1.2:!NULL"
125#ifndef COAP_OPENSSL_PSK_CIPHERS
126#define COAP_OPENSSL_PSK_CIPHERS "PSK:!NULL"
129#ifndef COAP_OPENSSL_PKCS11_ENGINE_ID
130#define COAP_OPENSSL_PKCS11_ENGINE_ID "pkcs11"
134typedef struct coap_dtls_context_t {
137 HMAC_CTX *cookie_hmac;
140} coap_dtls_context_t;
142typedef struct coap_tls_context_t {
150typedef struct sni_entry {
152#if OPENSSL_VERSION_NUMBER < 0x10101000L
159typedef struct psk_sni_entry {
161#if OPENSSL_VERSION_NUMBER < 0x10101000L
167typedef struct coap_openssl_context_t {
168 coap_dtls_context_t dtls;
170 coap_tls_context_t tls;
175 sni_entry *sni_entry_list;
176#if OPENSSL_VERSION_NUMBER < 0x10101000L
177 size_t psk_sni_count;
178 psk_sni_entry *psk_sni_entry_list;
180} coap_openssl_context_t;
182#if COAP_SERVER_SUPPORT
183#if OPENSSL_VERSION_NUMBER < 0x10101000L
184static int psk_tls_server_name_call_back(SSL *ssl,
int *sd,
void *arg);
186static int psk_tls_client_hello_call_back(SSL *ssl,
int *al,
void *arg);
192 if (SSLeay() < 0x10100000L) {
193 coap_log_warn(
"OpenSSL version 1.1.0 or later is required\n");
196#if OPENSSL_VERSION_NUMBER >= 0x10101000L
204 if (SSLeay() < 0x10101000L) {
205 coap_log_warn(
"OpenSSL version 1.1.1 or later is required\n");
215 if (SSLeay() < 0x10100000L) {
216 coap_log_warn(
"OpenSSL version 1.1.0 or later is required\n");
219#if OPENSSL_VERSION_NUMBER >= 0x10101000L
220 if (SSLeay() < 0x10101000L) {
221 coap_log_warn(
"OpenSSL version 1.1.1 or later is required\n");
255#if OPENSSL_VERSION_NUMBER < 0x40000000L
280#if COAP_CLIENT_SUPPORT
298#if OPENSSL_VERSION_NUMBER < 0x40000000L
299static ENGINE *pkcs11_engine =
NULL;
300static ENGINE *defined_engine =
NULL;
305 SSL_load_error_strings();
307#if OPENSSL_VERSION_NUMBER < 0x40000000L
308 ENGINE_load_dynamic();
314#if OPENSSL_VERSION_NUMBER < 0x30000000L
317 ENGINE_finish(pkcs11_engine);
318 pkcs11_engine =
NULL;
320 if (defined_engine) {
322 ENGINE_finish(defined_engine);
323 defined_engine =
NULL;
325#elif OPENSSL_VERSION_NUMBER < 0x40000000L
326 pkcs11_engine =
NULL;
327 defined_engine =
NULL;
343 return c_session->
tls;
348#if OPENSSL_VERSION_NUMBER < 0x40000000L
350get_split_conf_entry(
const uint8_t **start,
size_t size,
const char *get_keyword,
352 const uint8_t *begin = *start;
355 const uint8_t *split;
361 kend = end = memchr(begin,
'\n', size);
367 if (end > begin && end[-1] ==
'\r')
370 if (begin[0] ==
'#' || (end - begin) == 0) {
372 size -= kend - begin + 1;
378 split = memchr(begin,
':', end - begin);
382 if ((
size_t)(split - begin) != strlen(get_keyword)) {
383 size -= kend - begin + 1;
387 if (memcmp(begin, get_keyword, split - begin)) {
388 size -= kend - begin + 1;
396 if ((end - begin) == 0)
399 split = memchr(begin,
':', end - begin);
411 if ((end - split) > 0) {
446 const uint8_t *start;
451 unsigned int defaults = 0;
452 int done_engine_id = 0;
453 int done_engine_init = 0;
459 end = start + conf_mem->
length;
461 if (defined_engine) {
462 coap_log_warn(
"coap_tls_engine_configure: Freeing off previous engine definition\n");
463 ENGINE_finish(defined_engine);
464 defined_engine =
NULL;
468 if (!get_split_conf_entry(&start, end - start,
"engine", &engine_id, &p2)) {
469 coap_log_warn(
"coap_tls_engine_configure: engine not defined\n");
472 defined_engine = ENGINE_by_id((
const char *)engine_id->
s);
473 if (!defined_engine) {
474 coap_log_warn(
"coap_tls_engine_configure: engine '%s' not known\n", engine_id->
s);
484 while (get_split_conf_entry(&start, end - start,
"pre-cmd", &p1, &p2)) {
485 if (!ENGINE_ctrl_cmd_string(defined_engine, (
const char *)p1->
s, p2 ? (
const char *)p2->
s :
NULL,
487 coap_log_warn(
"coap_tls_engine_configure: engine %s pre-cmd '%s:%s' failed\n",
488 (
const char *)engine_id->
s,
489 (
const char *)p1->
s, p2 ? (
const char *)p2->
s :
"(NULL)");
493 engine_id->
s, p1->
s, p2 ? (
const char *)p2->
s :
"(NULL)");
502 if (!ENGINE_init(defined_engine)) {
503 coap_log_warn(
"coap_tls_engine_configure: %s failed initialization\n", (
const char *)engine_id->
s);
506 done_engine_init = 1;
508 (
const char *)engine_id->
s);
513 while (get_split_conf_entry(&start, end - start,
"post-cmd", &p1, &p2)) {
514 if (!ENGINE_ctrl_cmd_string(defined_engine, (
const char *)p1->
s, p2 ? (
const char *)p2->
s :
NULL,
516 coap_log_warn(
"coap_tls_engine_configure: %s post-cmd '%s:%s' failed\n", (
const char *)engine_id->
s,
517 (
const char *)p1->
s, p2 ? (
const char *)p2->
s :
"(NULL)");
521 (
const char *)engine_id->
s,
522 (
const char *)p1->
s, p2 ? (
const char *)p2->
s :
"(NULL)");
530 if (!get_split_conf_entry(&start, end - start,
"enable-methods", &p1, &p2)) {
531 coap_log_warn(
"coap_tls_engine_configure: enable-methods not found\n");
534 defaults = strtoul((
const char *)p1->
s,
NULL, 0);
535 if (!ENGINE_set_default(defined_engine, defaults)) {
536 coap_log_warn(
"coap_tls_engine_configure: enable-methods 0x%x invalid\n", defaults);
551 ENGINE_free(defined_engine);
552 if (done_engine_init)
553 ENGINE_finish(defined_engine);
554 defined_engine =
NULL;
563 if (defined_engine) {
564 ENGINE_finish(defined_engine);
565 defined_engine =
NULL;
599typedef struct coap_ssl_data {
608coap_dgram_create(BIO *a) {
609 coap_ssl_data *data =
NULL;
610 data = malloc(
sizeof(coap_ssl_data));
614 BIO_set_data(a, data);
615 memset(data, 0x00,
sizeof(coap_ssl_data));
620coap_dgram_destroy(BIO *a) {
624 data = (coap_ssl_data *)BIO_get_data(a);
625 BIO_set_data(a,
NULL);
632coap_dgram_read(BIO *a,
char *out,
int outl) {
634 coap_ssl_data *data = (coap_ssl_data *)BIO_get_data(a);
637 if (data !=
NULL && data->pdu_len > 0) {
638 if (outl < (
int)data->pdu_len) {
639 memcpy(out, data->pdu, outl);
642 memcpy(out, data->pdu, data->pdu_len);
643 ret = (int)data->pdu_len;
645 if (!data->peekmode) {
652 BIO_clear_retry_flags(a);
654 BIO_set_retry_read(a);
660coap_dgram_write(BIO *a,
const char *in,
int inl) {
662 coap_ssl_data *data = (coap_ssl_data *)BIO_get_data(a);
664 if (data && data->session) {
667 && data->session->endpoint ==
NULL
671 BIO_clear_retry_flags(a);
675 ret = (int)data->session->sock.lfunc[
COAP_LAYER_TLS].l_write(data->session,
678 BIO_clear_retry_flags(a);
680 if (ret < 0 && (errno == ENOTCONN || errno == ECONNREFUSED))
682 BIO_set_retry_write(a);
685 BIO_clear_retry_flags(a);
692coap_dgram_puts(BIO *a,
const char *pstr) {
693 return coap_dgram_write(a, pstr, (
int)strlen(pstr));
697coap_dgram_ctrl(BIO *a,
int cmd,
long num,
void *ptr) {
699 coap_ssl_data *data = BIO_get_data(a);
704 case BIO_CTRL_GET_CLOSE:
705 ret = BIO_get_shutdown(a);
707 case BIO_CTRL_SET_CLOSE:
708 BIO_set_shutdown(a, (
int)num);
710 case BIO_CTRL_DGRAM_SET_PEEK_MODE:
712 data->peekmode = (unsigned)num;
716 case BIO_CTRL_DGRAM_CONNECT:
719 case BIO_CTRL_DGRAM_SET_DONT_FRAG:
720 case BIO_CTRL_DGRAM_GET_MTU:
721 case BIO_CTRL_DGRAM_SET_MTU:
722 case BIO_CTRL_DGRAM_QUERY_MTU:
723 case BIO_CTRL_DGRAM_GET_FALLBACK_MTU:
728 case BIO_CTRL_DGRAM_MTU_DISCOVER:
729 case BIO_CTRL_DGRAM_SET_CONNECTED:
731 case BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT:
734 ((
struct timeval *)ptr)->tv_usec);
739 case BIO_C_FILE_SEEK:
740 case BIO_C_FILE_TELL:
742 case BIO_CTRL_PENDING:
743 case BIO_CTRL_WPENDING:
744 case BIO_CTRL_DGRAM_GET_PEER:
745 case BIO_CTRL_DGRAM_SET_PEER:
746 case BIO_CTRL_DGRAM_SET_RECV_TIMEOUT:
747 case BIO_CTRL_DGRAM_GET_RECV_TIMEOUT:
748 case BIO_CTRL_DGRAM_SET_SEND_TIMEOUT:
749 case BIO_CTRL_DGRAM_GET_SEND_TIMEOUT:
750 case BIO_CTRL_DGRAM_GET_SEND_TIMER_EXP:
751 case BIO_CTRL_DGRAM_GET_RECV_TIMER_EXP:
752 case BIO_CTRL_DGRAM_MTU_EXCEEDED:
753 case BIO_CTRL_DGRAM_GET_MTU_OVERHEAD:
762coap_dtls_generate_cookie(SSL *ssl,
763 unsigned char *cookie,
764 unsigned int *cookie_len) {
765 SSL_CTX *ctx = SSL_get_SSL_CTX(ssl);
766 coap_dtls_context_t *dtls = ctx ? (coap_dtls_context_t *)SSL_CTX_get_app_data(ctx) :
NULL;
767 coap_ssl_data *data = (coap_ssl_data *)BIO_get_data(SSL_get_rbio(ssl));
770 int r = HMAC_Init_ex(dtls->cookie_hmac,
NULL, 0,
NULL,
NULL);
771 r &= HMAC_Update(dtls->cookie_hmac,
772 (
const uint8_t *)&data->session->addr_info.local.addr,
773 (
size_t)data->session->addr_info.local.size);
774 r &= HMAC_Update(dtls->cookie_hmac,
775 (
const uint8_t *)&data->session->addr_info.remote.addr,
776 (
size_t)data->session->addr_info.remote.size);
777 r &= HMAC_Final(dtls->cookie_hmac, cookie, cookie_len);
784coap_dtls_verify_cookie(SSL *ssl,
785 const uint8_t *cookie,
786 unsigned int cookie_len) {
789 if (coap_dtls_generate_cookie(ssl, hmac, &len) &&
790 cookie_len == len && memcmp(cookie, hmac, len) == 0)
796#if COAP_CLIENT_SUPPORT
798coap_dtls_psk_client_callback(SSL *ssl,
801 unsigned int max_identity_len,
803 unsigned int max_psk_len) {
805 coap_openssl_context_t *o_context;
816 if (o_context ==
NULL)
820 temp.
s = hint ? (
const uint8_t *)hint : (const uint8_t *)
"";
821 temp.
length = strlen((
const char *)temp.
s);
825 (
const char *)temp.
s);
837 if (cpsk_info ==
NULL)
842 psk_identity = &cpsk_info->
identity;
843 psk_key = &cpsk_info->
key;
849 if (psk_identity ==
NULL || psk_key ==
NULL) {
855 if (!max_identity_len)
858 if (psk_identity->
length > max_identity_len) {
859 coap_log_warn(
"psk_identity too large, truncated to %d bytes\n",
863 max_identity_len = (
unsigned int)psk_identity->
length;
865 memcpy(identity, psk_identity->
s, max_identity_len);
866 identity[max_identity_len] =
'\000';
868 if (psk_key->
length > max_psk_len) {
873 max_psk_len = (
unsigned int)psk_key->
length;
875 memcpy(psk, psk_key->
s, max_psk_len);
880#if COAP_SERVER_SUPPORT
882coap_dtls_psk_server_callback(
884 const char *identity,
886 unsigned int max_psk_len
897 setup_data = &c_session->
context->spsk_setup_data;
900 lidentity.
s = identity ? (
const uint8_t *)identity : (const uint8_t *)
"";
901 lidentity.
length = strlen((
const char *)lidentity.
s);
905 (
int)lidentity.
length, (
const char *)lidentity.
s);
920 if (psk_key->
length > max_psk_len) {
925 max_psk_len = (
unsigned int)psk_key->
length;
927 memcpy(psk, psk_key->
s, max_psk_len);
933ssl_function_definition(
unsigned long e) {
934#if OPENSSL_VERSION_NUMBER >= 0x30000000L
938 static char buff[80];
940 snprintf(buff,
sizeof(buff),
" at %s:%s",
941 ERR_lib_error_string(e), ERR_func_error_string(e));
947coap_dtls_info_callback(
const SSL *ssl,
int where,
int ret) {
950 int w = where &~SSL_ST_MASK;
954 "coap_dtls_info_callback: session not determined, where 0x%0x and ret 0x%0x\n", where, ret);
957 if (w & SSL_ST_CONNECT)
958 pstr =
"SSL_connect";
959 else if (w & SSL_ST_ACCEPT)
964 if (where & SSL_CB_LOOP) {
967 }
else if (where & SSL_CB_ALERT) {
969 pstr = (where & SSL_CB_READ) ?
"read" :
"write";
970 if ((where & (SSL_CB_WRITE|SSL_CB_READ)) && (ret >> 8) == SSL3_AL_FATAL) {
972 if ((ret & 0xff) != SSL3_AD_CLOSE_NOTIFY)
976 coap_log(log_level,
"* %s: SSL3 alert %s:%s:%s\n",
979 SSL_alert_type_string_long(ret),
980 SSL_alert_desc_string_long(ret));
981 }
else if (where & SSL_CB_EXIT) {
987 while ((e = ERR_get_error()))
990 ssl_function_definition(e));
992 }
else if (ret < 0) {
994 int err = SSL_get_error(ssl, ret);
995 if (err != SSL_ERROR_WANT_READ && err != SSL_ERROR_WANT_WRITE &&
996 err != SSL_ERROR_WANT_CONNECT && err != SSL_ERROR_WANT_ACCEPT &&
997 err != SSL_ERROR_WANT_X509_LOOKUP) {
1001 while ((e = ERR_get_error()))
1004 ssl_function_definition(e));
1010 if (where == SSL_CB_HANDSHAKE_START && SSL_get_state(ssl) == TLS_ST_OK)
1014#if !COAP_DISABLE_TCP
1016coap_sock_create(BIO *a) {
1022coap_sock_destroy(BIO *a) {
1034coap_sock_read(BIO *a,
char *out,
int outl) {
1038 if (session && out !=
NULL) {
1043 BIO_set_retry_read(a);
1046 BIO_clear_retry_flags(a);
1059coap_sock_write(BIO *a,
const char *in,
int inl) {
1068 (
const uint8_t *)in,
1072 BIO_clear_retry_flags(a);
1074 BIO_set_retry_read(a);
1077 BIO_clear_retry_flags(a);
1081 (errno == EPIPE || errno == ECONNRESET)) {
1101coap_sock_puts(BIO *a,
const char *pstr) {
1102 return coap_sock_write(a, pstr, (
int)strlen(pstr));
1106coap_sock_ctrl(BIO *a,
int cmd,
long num,
void *ptr) {
1117 case BIO_CTRL_SET_CLOSE:
1119 case BIO_CTRL_FLUSH:
1123 case BIO_CTRL_GET_CLOSE:
1132coap_set_user_prefs(SSL_CTX *ctx) {
1133 SSL_CTX_set_cipher_list(ctx, COAP_OPENSSL_CIPHERS);
1135#ifdef COAP_OPENSSL_SIGALGS
1136 SSL_CTX_set1_sigalgs_list(ctx, COAP_OPENSSL_SIGALGS);
1137 SSL_CTX_set1_client_sigalgs_list(ctx, COAP_OPENSSL_SIGALGS);
1140#if OPENSSL_VERSION_NUMBER >= 0x10101000L && defined(COAP_OPENSSL_GROUPS)
1141 SSL_CTX_set1_groups_list(ctx, COAP_OPENSSL_GROUPS);
1145#if COAP_DTLS_RETRANSMIT_MS != 1000
1146#if OPENSSL_VERSION_NUMBER >= 0x10101000L
1148timer_cb(SSL *s,
unsigned int timer_us) {
1153 return 2 * timer_us;
1160 coap_openssl_context_t *context;
1165 uint8_t cookie_secret[32];
1167 memset(context, 0,
sizeof(coap_openssl_context_t));
1170 context->dtls.ctx = SSL_CTX_new(DTLS_method());
1171 if (!context->dtls.ctx)
1173 SSL_CTX_set_min_proto_version(context->dtls.ctx, DTLS1_2_VERSION);
1174 SSL_CTX_set_app_data(context->dtls.ctx, &context->dtls);
1175 SSL_CTX_set_read_ahead(context->dtls.ctx, 1);
1176 coap_set_user_prefs(context->dtls.ctx);
1177 memset(cookie_secret, 0,
sizeof(cookie_secret));
1178 if (!RAND_bytes(cookie_secret, (
int)
sizeof(cookie_secret))) {
1180 "Insufficient entropy for random cookie generation");
1183 context->dtls.cookie_hmac = HMAC_CTX_new();
1184 if (!context->dtls.cookie_hmac)
1186 if (!HMAC_Init_ex(context->dtls.cookie_hmac, cookie_secret, (
int)
sizeof(cookie_secret),
1187 EVP_sha256(),
NULL))
1189 SSL_CTX_set_cookie_generate_cb(context->dtls.ctx, coap_dtls_generate_cookie);
1190 SSL_CTX_set_cookie_verify_cb(context->dtls.ctx, coap_dtls_verify_cookie);
1191 SSL_CTX_set_info_callback(context->dtls.ctx, coap_dtls_info_callback);
1192 SSL_CTX_set_options(context->dtls.ctx, SSL_OP_NO_QUERY_MTU);
1193#if OPENSSL_VERSION_NUMBER >= 0x30000000L
1194 SSL_CTX_set_options(context->dtls.ctx, SSL_OP_LEGACY_SERVER_CONNECT);
1196 context->dtls.meth = BIO_meth_new(BIO_TYPE_DGRAM,
"coapdgram");
1197 if (!context->dtls.meth)
1199 context->dtls.bio_addr = BIO_ADDR_new();
1200 if (!context->dtls.bio_addr)
1202 BIO_meth_set_write(context->dtls.meth, coap_dgram_write);
1203 BIO_meth_set_read(context->dtls.meth, coap_dgram_read);
1204 BIO_meth_set_puts(context->dtls.meth, coap_dgram_puts);
1205 BIO_meth_set_ctrl(context->dtls.meth, coap_dgram_ctrl);
1206 BIO_meth_set_create(context->dtls.meth, coap_dgram_create);
1207 BIO_meth_set_destroy(context->dtls.meth, coap_dgram_destroy);
1209#if !COAP_DISABLE_TCP
1211 context->tls.ctx = SSL_CTX_new(TLS_method());
1212 if (!context->tls.ctx)
1214 SSL_CTX_set_app_data(context->tls.ctx, &context->tls);
1215 SSL_CTX_set_min_proto_version(context->tls.ctx, TLS1_VERSION);
1216 coap_set_user_prefs(context->tls.ctx);
1217 SSL_CTX_set_info_callback(context->tls.ctx, coap_dtls_info_callback);
1218 context->tls.meth = BIO_meth_new(BIO_TYPE_SOCKET,
"coapsock");
1219 if (!context->tls.meth)
1221 BIO_meth_set_write(context->tls.meth, coap_sock_write);
1222 BIO_meth_set_read(context->tls.meth, coap_sock_read);
1223 BIO_meth_set_puts(context->tls.meth, coap_sock_puts);
1224 BIO_meth_set_ctrl(context->tls.meth, coap_sock_ctrl);
1225 BIO_meth_set_create(context->tls.meth, coap_sock_create);
1226 BIO_meth_set_destroy(context->tls.meth, coap_sock_destroy);
1237#if COAP_SERVER_SUPPORT
1242 coap_openssl_context_t *o_context =
1246 if (!setup_data || !o_context)
1249 SSL_CTX_set_psk_server_callback(o_context->dtls.ctx,
1250 coap_dtls_psk_server_callback);
1251#if !COAP_DISABLE_TCP
1252 SSL_CTX_set_psk_server_callback(o_context->tls.ctx,
1253 coap_dtls_psk_server_callback);
1259 SSL_CTX_use_psk_identity_hint(o_context->dtls.ctx, hint);
1260#if !COAP_DISABLE_TCP
1261 SSL_CTX_use_psk_identity_hint(o_context->tls.ctx, hint);
1265#if OPENSSL_VERSION_NUMBER < 0x10101000L
1266 SSL_CTX_set_tlsext_servername_arg(o_context->dtls.ctx,
1267 &c_context->spsk_setup_data);
1268 SSL_CTX_set_tlsext_servername_callback(o_context->dtls.ctx,
1269 psk_tls_server_name_call_back);
1270#if !COAP_DISABLE_TCP
1271 SSL_CTX_set_tlsext_servername_arg(o_context->tls.ctx,
1272 &c_context->spsk_setup_data);
1273 SSL_CTX_set_tlsext_servername_callback(o_context->tls.ctx,
1274 psk_tls_server_name_call_back);
1277 SSL_CTX_set_client_hello_cb(o_context->dtls.ctx,
1278 psk_tls_client_hello_call_back,
1280#if !COAP_DISABLE_TCP
1281 SSL_CTX_set_client_hello_cb(o_context->tls.ctx,
1282 psk_tls_client_hello_call_back,
1288 if (!o_context->dtls.ssl) {
1290 o_context->dtls.ssl = SSL_new(o_context->dtls.ctx);
1291 if (!o_context->dtls.ssl)
1293 bio = BIO_new(o_context->dtls.meth);
1295 SSL_free(o_context->dtls.ssl);
1296 o_context->dtls.ssl =
NULL;
1299 SSL_set_bio(o_context->dtls.ssl, bio, bio);
1300 SSL_set_app_data(o_context->dtls.ssl,
NULL);
1301 SSL_set_options(o_context->dtls.ssl, SSL_OP_COOKIE_EXCHANGE);
1307 o_context->psk_pki_enabled |= IS_PSK;
1312#if COAP_CLIENT_SUPPORT
1317 coap_openssl_context_t *o_context =
1321 if (!setup_data || !o_context)
1324 if (!o_context->dtls.ssl) {
1326 o_context->dtls.ssl = SSL_new(o_context->dtls.ctx);
1327 if (!o_context->dtls.ssl)
1329 bio = BIO_new(o_context->dtls.meth);
1331 SSL_free(o_context->dtls.ssl);
1332 o_context->dtls.ssl =
NULL;
1335 SSL_set_bio(o_context->dtls.ssl, bio, bio);
1336 SSL_set_app_data(o_context->dtls.ssl,
NULL);
1337 SSL_set_options(o_context->dtls.ssl, SSL_OP_COOKIE_EXCHANGE);
1346 o_context->psk_pki_enabled |= IS_PSK;
1352map_key_type(
int asn1_private_key_type
1354 switch (asn1_private_key_type) {
1356 return EVP_PKEY_NONE;
1358 return EVP_PKEY_RSA;
1360 return EVP_PKEY_RSA2;
1362 return EVP_PKEY_DSA;
1364 return EVP_PKEY_DSA1;
1366 return EVP_PKEY_DSA2;
1368 return EVP_PKEY_DSA3;
1370 return EVP_PKEY_DSA4;
1374 return EVP_PKEY_DHX;
1378 return EVP_PKEY_HMAC;
1380 return EVP_PKEY_CMAC;
1382 return EVP_PKEY_TLS1_PRF;
1384 return EVP_PKEY_HKDF;
1386 coap_log_warn(
"*** setup_pki: DTLS: Unknown Private Key type %d for ASN1\n",
1387 asn1_private_key_type);
1392#if !COAP_DISABLE_TCP
1393static uint8_t coap_alpn[] = { 4,
'c',
'o',
'a',
'p' };
1395#if COAP_SERVER_SUPPORT
1398 const unsigned char **out,
1399 unsigned char *outlen,
1400 const unsigned char *in,
1404 unsigned char *tout =
NULL;
1407 return SSL_TLSEXT_ERR_NOACK;
1408 ret = SSL_select_next_proto(&tout,
1415 return (ret != OPENSSL_NPN_NEGOTIATED) ? SSL_TLSEXT_ERR_NOACK : SSL_TLSEXT_ERR_OK;
1421add_ca_to_cert_store(X509_STORE *st, X509 *x509) {
1425 while (ERR_get_error() != 0) {
1428 if (!X509_STORE_add_cert(st, x509)) {
1429 while ((e = ERR_get_error()) != 0) {
1430 int r = ERR_GET_REASON(e);
1431 if (r != X509_R_CERT_ALREADY_IN_HASH_TABLE) {
1434 ERR_reason_error_string(e),
1435 ssl_function_definition(e));
1441#if OPENSSL_VERSION_NUMBER < 0x40000000L
1443missing_ENGINE_load_cert(ENGINE *engine,
const char *cert_id) {
1445 const char *cert_id;
1449 params.cert_id = cert_id;
1453 if (!ENGINE_ctrl_cmd(engine,
"LOAD_CERT_CTRL", 0, ¶ms,
NULL, 1)) {
1460check_pkcs11_engine(
void) {
1461 static int already_tried = 0;
1466 if (!pkcs11_engine) {
1467 pkcs11_engine = ENGINE_by_id(COAP_OPENSSL_PKCS11_ENGINE_ID);
1468 if (!pkcs11_engine) {
1469 coap_log_err(
"*** setup_pki: (D)TLS: No PKCS11 support - need OpenSSL %s engine\n",
1470 COAP_OPENSSL_PKCS11_ENGINE_ID);
1474 if (!ENGINE_init(pkcs11_engine)) {
1476 ENGINE_free(pkcs11_engine);
1477 pkcs11_engine =
NULL;
1478 coap_log_err(
"*** setup_pki: (D)TLS: PKCS11 engine initialize failed\n");
1486 ENGINE_free(pkcs11_engine);
1492#if OPENSSL_VERSION_NUMBER < 0x10101000L && COAP_SERVER_SUPPORT
1495install_engine_public_cert_ctx(ENGINE *engine, SSL_CTX *ctx,
1496 const char *public_cert) {
1499 x509 = missing_ENGINE_load_cert(engine, public_cert);
1507 if (!SSL_CTX_use_certificate(ctx, x509)) {
1508 coap_log_warn(
"*** setup_pki: (D)TLS: %s: Unable to configure "
1520install_engine_private_key_ctx(ENGINE *engine, SSL_CTX *ctx,
1521 const char *private_key) {
1522 EVP_PKEY *pkey = ENGINE_load_private_key(engine,
1533 if (!SSL_CTX_use_PrivateKey(ctx, pkey)) {
1534 coap_log_warn(
"*** setup_pki: (D)TLS: %s: Unable to configure "
1538 EVP_PKEY_free(pkey);
1541 EVP_PKEY_free(pkey);
1546install_engine_ca_ctx(ENGINE *engine, SSL_CTX *ctx,
const char *ca) {
1550 x509 = missing_ENGINE_load_cert(engine,
1554 "%s CA Certificate\n",
1559 if (!SSL_CTX_add_client_CA(ctx, x509)) {
1560 coap_log_warn(
"*** setup_pki: (D)TLS: %s: Unable to configure "
1561 "%s CA Certificate\n",
1567 st = SSL_CTX_get_cert_store(ctx);
1568 add_ca_to_cert_store(st, x509);
1574load_in_cas_ctx(SSL_CTX *ctx,
1575 const char *ca_file) {
1576 STACK_OF(X509_NAME) *cert_names;
1580 char *rw_var =
NULL;
1581 cert_names = SSL_load_client_CA_file(ca_file);
1582 if (cert_names !=
NULL)
1583 SSL_CTX_set_client_CA_list(ctx, cert_names);
1585 coap_log_warn(
"*** setup_pki: (D)TLS: %s: Unable to configure "
1592 st = SSL_CTX_get_cert_store(ctx);
1593 in = BIO_new(BIO_s_file());
1597 memcpy(&rw_var, &ca_file,
sizeof(rw_var));
1598 if (!BIO_read_filename(in, rw_var)) {
1606 add_ca_to_cert_store(st, x);
1614setup_pki_server(SSL_CTX *ctx,
1630 if (!(SSL_CTX_use_PrivateKey_file(ctx,
1632 SSL_FILETYPE_PEM))) {
1642 EVP_PKEY *pkey = bp ? PEM_read_bio_PrivateKey(bp,
NULL, 0,
NULL) :
NULL;
1644 if (!pkey || !SSL_CTX_use_PrivateKey(ctx, pkey)) {
1648 EVP_PKEY_free(pkey);
1656 EVP_PKEY_free(pkey);
1668 if (!(SSL_CTX_use_PrivateKey_file(ctx,
1670 SSL_FILETYPE_ASN1))) {
1688 if (!check_pkcs11_engine()) {
1693 if (ENGINE_ctrl_cmd_string(pkcs11_engine,
1696 coap_log_warn(
"*** setup_pki: (D)TLS: PKCS11: %s: Unable to set pin\n",
1701 if (!install_engine_private_key_ctx(pkcs11_engine, ctx,
1709 if (!defined_engine ||
1710 !install_engine_private_key_ctx(defined_engine, ctx,
1739 if (!(SSL_CTX_use_certificate_file(ctx,
1741 SSL_FILETYPE_PEM))) {
1747 if (!SSL_CTX_use_certificate_chain_file(ctx,
1759 X509 *cert = bp ? PEM_read_bio_X509(bp,
NULL, 0,
NULL) :
NULL;
1761 if (!cert || !SSL_CTX_use_certificate(ctx, cert)) {
1785 if (!(SSL_CTX_use_certificate_file(ctx,
1787 SSL_FILETYPE_ASN1))) {
1795 !(SSL_CTX_use_certificate_ASN1(ctx,
1804 if (!check_pkcs11_engine()) {
1807 if (!install_engine_public_cert_ctx(pkcs11_engine, ctx,
1815 if (!defined_engine ||
1816 !install_engine_public_cert_ctx(defined_engine, ctx,
1854 X509_STORE *st = SSL_CTX_get_cert_store(ctx);
1860 add_ca_to_cert_store(st, x);
1861 SSL_CTX_add_client_CA(ctx, x);
1877 if (!(SSL_CTX_use_certificate_file(ctx,
1879 SSL_FILETYPE_ASN1))) {
1892 if (!x509 || !SSL_CTX_add_client_CA(ctx, x509)) {
1900 st = SSL_CTX_get_cert_store(ctx);
1901 add_ca_to_cert_store(st, x509);
1906 if (!check_pkcs11_engine()) {
1909 if (!install_engine_ca_ctx(pkcs11_engine, ctx,
1917 if (!defined_engine ||
1918 !install_engine_ca_ctx(defined_engine, ctx,
1937#if OPENSSL_VERSION_NUMBER >= 0x10101000L || COAP_CLIENT_SUPPORT
1939#if OPENSSL_VERSION_NUMBER < 0x40000000L
1941install_engine_public_cert(ENGINE *engine, SSL *ssl,
const char *public_cert,
1945 x509 = missing_ENGINE_load_cert(engine, public_cert);
1953 if (!SSL_use_certificate(ssl, x509)) {
1954 coap_log_warn(
"*** setup_pki: (D)TLS: %s: Unable to configure "
1966install_engine_private_key(ENGINE *engine, SSL *ssl,
const char *private_key,
1968 EVP_PKEY *pkey = ENGINE_load_private_key(engine,
1979 if (!SSL_use_PrivateKey(ssl, pkey)) {
1980 coap_log_warn(
"*** setup_pki: (D)TLS: %s: Unable to configure "
1984 EVP_PKEY_free(pkey);
1987 EVP_PKEY_free(pkey);
1992install_engine_ca(ENGINE *engine, SSL *ssl,
const char *ca,
1995 SSL_CTX *ctx = SSL_get_SSL_CTX(ssl);
2000 "%s CA Certificate (no ctx)\n",
2005 x509 = missing_ENGINE_load_cert(engine,
2009 "%s CA Certificate\n",
2014 if (!SSL_add_client_CA(ssl, x509)) {
2015 coap_log_warn(
"*** setup_pki: (D)TLS: %s: Unable to configure "
2016 "%s CA Certificate\n",
2022 st = SSL_CTX_get_cert_store(ctx);
2023 add_ca_to_cert_store(st, x509);
2030load_in_cas(SSL *ssl,
2035 char *rw_var =
NULL;
2036 SSL_CTX *ctx = SSL_get_SSL_CTX(ssl);
2039 STACK_OF(X509_NAME) *cert_names = SSL_load_client_CA_file(ca_file);
2041 if (cert_names !=
NULL)
2042 SSL_set_client_CA_list(ssl, cert_names);
2052 in = BIO_new(BIO_s_file());
2056 memcpy(&rw_var, &ca_file,
sizeof(rw_var));
2057 if (!BIO_read_filename(in, rw_var)) {
2061 st = SSL_CTX_get_cert_store(ctx);
2065 add_ca_to_cert_store(st, x);
2073setup_pki_ssl(SSL *ssl,
2089 if (!(SSL_use_PrivateKey_file(ssl,
2091 SSL_FILETYPE_PEM))) {
2092 goto fail_bad_private;
2099 EVP_PKEY *pkey = bp ? PEM_read_bio_PrivateKey(bp,
NULL, 0,
NULL) :
NULL;
2101 if (!pkey || !SSL_use_PrivateKey(ssl, pkey)) {
2105 EVP_PKEY_free(pkey);
2106 goto fail_bad_private;
2111 EVP_PKEY_free(pkey);
2113 goto fail_none_private;
2117 goto fail_ns_private;
2119 if (!(SSL_use_PrivateKey_file(ssl,
2121 SSL_FILETYPE_ASN1))) {
2122 goto fail_bad_private;
2131 goto fail_bad_private;
2135#if OPENSSL_VERSION_NUMBER < 0x40000000L
2136 if (!check_pkcs11_engine()) {
2137 goto fail_bad_private;
2141 if (ENGINE_ctrl_cmd_string(pkcs11_engine,
2144 coap_log_warn(
"*** setup_pki: (D)TLS: PKCS11: %s: Unable to set pin\n",
2146 goto fail_bad_private;
2149 if (!install_engine_private_key(pkcs11_engine, ssl,
2152 goto fail_bad_private;
2155 goto fail_bad_private;
2159#if OPENSSL_VERSION_NUMBER < 0x40000000L
2160 if (!defined_engine ||
2161 !install_engine_private_key(defined_engine, ssl,
2164 goto fail_bad_private;
2170 goto fail_ns_private;
2175 goto fail_none_private;
2188 if (!(SSL_use_certificate_file(ssl,
2190 SSL_FILETYPE_PEM))) {
2191 goto fail_bad_public;
2194 if (!SSL_use_certificate_chain_file(ssl,
2196 goto fail_bad_public;
2204 X509 *cert = bp ? PEM_read_bio_X509(bp,
NULL, 0,
NULL) :
NULL;
2206 if (!cert || !SSL_use_certificate(ssl, cert)) {
2211 goto fail_bad_public;
2218 goto fail_bad_public;
2222 goto fail_ns_public;
2224 if (!(SSL_use_certificate_file(ssl,
2226 SSL_FILETYPE_ASN1))) {
2227 goto fail_bad_public;
2232 !(SSL_use_certificate_ASN1(ssl,
2235 goto fail_bad_public;
2239#if OPENSSL_VERSION_NUMBER < 0x40000000L
2240 if (!check_pkcs11_engine()) {
2241 goto fail_bad_public;
2243 if (!install_engine_public_cert(pkcs11_engine, ssl,
2246 goto fail_bad_public;
2249 goto fail_bad_public;
2253#if OPENSSL_VERSION_NUMBER < 0x40000000L
2254 if (!defined_engine ||
2255 !install_engine_public_cert(defined_engine, ssl,
2258 goto fail_bad_public;
2264 goto fail_ns_public;
2290 SSL_CTX *ctx = SSL_get_SSL_CTX(ssl);
2292 X509_STORE *st = ctx? SSL_CTX_get_cert_store(ctx) :
NULL;
2296 if ((x = PEM_read_bio_X509(bp,
NULL, 0,
NULL)) ==
NULL)
2299 add_ca_to_cert_store(st, x);
2300 SSL_add_client_CA(ssl, x);
2312 if (!(SSL_use_certificate_file(ssl,
2314 SSL_FILETYPE_ASN1))) {
2324 SSL_CTX *ctx = SSL_get_SSL_CTX(ssl);
2327 if (!x509 || !SSL_add_client_CA(ssl, x509)) {
2334 st = ctx ? SSL_CTX_get_cert_store(ctx) :
NULL;
2336 add_ca_to_cert_store(st, x509);
2341#if OPENSSL_VERSION_NUMBER < 0x40000000L
2342 if (!check_pkcs11_engine()) {
2345 if (!install_engine_ca(pkcs11_engine, ssl,
2355#if OPENSSL_VERSION_NUMBER < 0x40000000L
2356 if (!defined_engine ||
2357 !install_engine_ca(defined_engine, ssl,
2405get_san_or_cn_from_cert(X509 *x509) {
2409 STACK_OF(GENERAL_NAME) *san_list;
2412 san_list = X509_get_ext_d2i(x509, NID_subject_alt_name,
NULL,
NULL);
2414 int san_count = sk_GENERAL_NAME_num(san_list);
2416 for (n = 0; n < san_count; n++) {
2417 const GENERAL_NAME *name = sk_GENERAL_NAME_value(san_list, n);
2419 if (name && name->type == GEN_DNS) {
2420 const char *dns_name = (
const char *)ASN1_STRING_get0_data(name->d.dNSName);
2423 if (ASN1_STRING_length(name->d.dNSName) != (
int)strlen(dns_name))
2425 cn = OPENSSL_strdup(dns_name);
2426 sk_GENERAL_NAME_pop_free(san_list, GENERAL_NAME_free);
2430 sk_GENERAL_NAME_pop_free(san_list, GENERAL_NAME_free);
2433 X509_NAME_oneline(X509_get_subject_name(x509), buffer,
sizeof(buffer));
2436 n = (int)strlen(buffer) - 3;
2439 if (((cn[0] ==
'C') || (cn[0] ==
'c')) &&
2440 ((cn[1] ==
'N') || (cn[1] ==
'n')) &&
2449 char *ecn = strchr(cn,
'/');
2451 return OPENSSL_strndup(cn, ecn-cn);
2453 return OPENSSL_strdup(cn);
2461tls_verify_call_back(
int preverify_ok, X509_STORE_CTX *ctx) {
2462 int index = SSL_get_ex_data_X509_STORE_CTX_idx();
2463 SSL *ssl = index >= 0 ? X509_STORE_CTX_get_ex_data(ctx, index) :
NULL;
2465 coap_openssl_context_t *context = (session && session->
context) ?
2468 int depth = X509_STORE_CTX_get_error_depth(ctx);
2469 int err = X509_STORE_CTX_get_error(ctx);
2470 X509 *x509 = X509_STORE_CTX_get_current_cert(ctx);
2471 char *cn = x509 ? get_san_or_cn_from_cert(x509) :
NULL;
2472 int keep_preverify_ok = preverify_ok;
2475 depth, err, preverify_ok, cn);
2477 X509_STORE_CTX_set_error(ctx, X509_V_ERR_UNSPECIFIED);
2481 if (!preverify_ok) {
2483 case X509_V_ERR_CERT_NOT_YET_VALID:
2484 case X509_V_ERR_CERT_HAS_EXPIRED:
2488 case X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT:
2492 case X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN:
2496 case X509_V_ERR_UNABLE_TO_GET_CRL:
2500 case X509_V_ERR_CRL_NOT_YET_VALID:
2501 case X509_V_ERR_CRL_HAS_EXPIRED:
2505 case X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY:
2506 case X509_V_ERR_UNABLE_TO_VERIFY_LEAF_SIGNATURE:
2507 case X509_V_ERR_AKID_SKID_MISMATCH:
2517 err = X509_V_ERR_CERT_CHAIN_TOO_LONG;
2518 X509_STORE_CTX_set_error(ctx, err);
2520 if (!preverify_ok) {
2521 if (err == X509_V_ERR_SELF_SIGNED_CERT_IN_CHAIN) {
2524 "Unknown CA", cn ? cn :
"?", depth);
2528 X509_verify_cert_error_string(err), cn ? cn :
"?", depth);
2533 X509_verify_cert_error_string(err), cn ? cn :
"?", depth);
2538 int length = i2d_X509(x509,
NULL);
2540 uint8_t *base_buf2 = base_buf = length > 0 ? OPENSSL_malloc(length) :
NULL;
2545 assert(i2d_X509(x509, &base_buf2) > 0);
2549 depth, preverify_ok,
2553 X509_STORE_CTX_set_error(ctx, X509_V_ERR_CERT_REJECTED);
2555 X509_STORE_CTX_set_error(ctx, X509_V_ERR_INVALID_CA);
2559 OPENSSL_free(base_buf);
2561 X509_STORE_CTX_set_error(ctx, X509_V_ERR_UNSPECIFIED);
2566 return preverify_ok;
2569#if COAP_SERVER_SUPPORT
2570#if OPENSSL_VERSION_NUMBER < 0x10101000L
2580tls_secret_call_back(SSL *ssl,
2583 STACK_OF(SSL_CIPHER) *peer_ciphers,
2587 int psk_requested = 0;
2592 assert(session !=
NULL);
2594 if (session ==
NULL ||
2599 (session->
context->spsk_setup_data.psk_info.key.s &&
2600 session->
context->spsk_setup_data.psk_info.key.length)) {
2602 for (ii = 0; ii < sk_SSL_CIPHER_num(peer_ciphers); ii++) {
2603 const SSL_CIPHER *peer_cipher = sk_SSL_CIPHER_value(peer_ciphers, ii);
2606 SSL_CIPHER_get_name(peer_cipher));
2607 if (strstr(SSL_CIPHER_get_name(peer_cipher),
"PSK")) {
2613 if (!psk_requested) {
2620 SSL_VERIFY_CLIENT_ONCE |
2621 SSL_VERIFY_FAIL_IF_NO_PEER_CERT,
2622 tls_verify_call_back);
2624 SSL_set_verify(ssl, SSL_VERIFY_NONE, tls_verify_call_back);
2633 X509_VERIFY_PARAM *param;
2635 param = X509_VERIFY_PARAM_new();
2637 X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
2638 SSL_set1_param(ssl, param);
2639 X509_VERIFY_PARAM_free(param);
2651 }
else if (session->
context->spsk_setup_data.psk_info.key.s &&
2652 session->
context->spsk_setup_data.psk_info.key.length) {
2653 memcpy(secret, session->
context->spsk_setup_data.psk_info.key.s,
2654 session->
context->spsk_setup_data.psk_info.key.length);
2655 *secretlen = session->
context->spsk_setup_data.psk_info.key.length;
2662 SSL_set_cipher_list(ssl, COAP_OPENSSL_PSK_CIPHERS);
2663#ifdef COAP_OPENSSL_PSK_SECURITY_LEVEL
2669 SSL_set_security_level(ssl, COAP_OPENSSL_PSK_SECURITY_LEVEL);
2671 SSL_set_psk_server_callback(ssl, coap_dtls_psk_server_callback);
2686tls_server_name_call_back(SSL *ssl,
2692 return SSL_TLSEXT_ERR_NOACK;
2698 coap_openssl_context_t *context = (session && session->
context) ?
2700 const char *sni = SSL_get_servername(ssl, TLSEXT_NAMETYPE_host_name);
2704 return SSL_TLSEXT_ERR_NOACK;
2706 if (!sni || !sni[0]) {
2709 for (i = 0; i < context->sni_count; i++) {
2710 if (!strcasecmp(sni, context->sni_entry_list[i].sni)) {
2714 if (i == context->sni_count) {
2723 return SSL_TLSEXT_ERR_ALERT_FATAL;
2728 ctx = SSL_CTX_new(DTLS_method());
2731 SSL_CTX_set_min_proto_version(ctx, DTLS1_2_VERSION);
2732 SSL_CTX_set_app_data(ctx, &context->dtls);
2733 SSL_CTX_set_read_ahead(ctx, 1);
2734 coap_set_user_prefs(ctx);
2735 SSL_CTX_set_cookie_generate_cb(ctx, coap_dtls_generate_cookie);
2736 SSL_CTX_set_cookie_verify_cb(ctx, coap_dtls_verify_cookie);
2737 SSL_CTX_set_info_callback(ctx, coap_dtls_info_callback);
2738 SSL_CTX_set_options(ctx, SSL_OP_NO_QUERY_MTU);
2740#if !COAP_DISABLE_TCP
2743 ctx = SSL_CTX_new(TLS_method());
2746 SSL_CTX_set_app_data(ctx, &context->tls);
2747 SSL_CTX_set_min_proto_version(ctx, TLS1_VERSION);
2748 coap_set_user_prefs(ctx);
2749 SSL_CTX_set_info_callback(ctx, coap_dtls_info_callback);
2750 SSL_CTX_set_alpn_select_cb(ctx, server_alpn_callback,
NULL);
2753 sni_setup_data = *setup_data;
2754 sni_setup_data.
pki_key = *new_entry;
2755 setup_pki_server(ctx, &sni_setup_data);
2757 context->sni_entry_list = OPENSSL_realloc(context->sni_entry_list,
2758 (context->sni_count+1)*
sizeof(sni_entry));
2759 context->sni_entry_list[context->sni_count].sni = OPENSSL_strdup(sni);
2760 context->sni_entry_list[context->sni_count].ctx = ctx;
2761 context->sni_count++;
2763 SSL_set_SSL_CTX(ssl, context->sni_entry_list[i].ctx);
2764 SSL_clear_options(ssl, 0xFFFFFFFFL);
2765 SSL_set_options(ssl, SSL_CTX_get_options(context->sni_entry_list[i].ctx));
2772 SSL_set_session_secret_cb(ssl, tls_secret_call_back, arg);
2773 return SSL_TLSEXT_ERR_OK;
2776 return SSL_TLSEXT_ERR_ALERT_WARNING;
2788psk_tls_server_name_call_back(SSL *ssl,
2795 return SSL_TLSEXT_ERR_NOACK;
2801 coap_openssl_context_t *o_context = (c_session && c_session->
context) ?
2803 const char *sni = SSL_get_servername(ssl, TLSEXT_NAMETYPE_host_name);
2808 return SSL_TLSEXT_ERR_ALERT_FATAL;
2810 if (!sni || !sni[0]) {
2813 for (i = 0; i < o_context->psk_sni_count; i++) {
2814 if (!strcasecmp(sni, (
char *)o_context->psk_sni_entry_list[i].sni)) {
2818 if (i == o_context->psk_sni_count) {
2827 return SSL_TLSEXT_ERR_ALERT_FATAL;
2832 ctx = SSL_CTX_new(DTLS_method());
2835 SSL_CTX_set_min_proto_version(ctx, DTLS1_2_VERSION);
2836 SSL_CTX_set_app_data(ctx, &o_context->dtls);
2837 SSL_CTX_set_read_ahead(ctx, 1);
2838 SSL_CTX_set_cipher_list(ctx, COAP_OPENSSL_CIPHERS);
2839 SSL_CTX_set_cookie_generate_cb(ctx, coap_dtls_generate_cookie);
2840 SSL_CTX_set_cookie_verify_cb(ctx, coap_dtls_verify_cookie);
2841 SSL_CTX_set_info_callback(ctx, coap_dtls_info_callback);
2842 SSL_CTX_set_options(ctx, SSL_OP_NO_QUERY_MTU);
2844#if !COAP_DISABLE_TCP
2847 ctx = SSL_CTX_new(TLS_method());
2850 SSL_CTX_set_app_data(ctx, &o_context->tls);
2851 SSL_CTX_set_min_proto_version(ctx, TLS1_VERSION);
2852 SSL_CTX_set_cipher_list(ctx, COAP_OPENSSL_CIPHERS);
2853 SSL_CTX_set_info_callback(ctx, coap_dtls_info_callback);
2854 SSL_CTX_set_alpn_select_cb(ctx, server_alpn_callback,
NULL);
2858 o_context->psk_sni_entry_list =
2859 OPENSSL_realloc(o_context->psk_sni_entry_list,
2860 (o_context->psk_sni_count+1)*
sizeof(psk_sni_entry));
2861 o_context->psk_sni_entry_list[o_context->psk_sni_count].sni =
2862 OPENSSL_strdup(sni);
2863 o_context->psk_sni_entry_list[o_context->psk_sni_count].psk_info =
2865 o_context->psk_sni_entry_list[o_context->psk_sni_count].ctx =
2867 o_context->psk_sni_count++;
2869 SSL_set_SSL_CTX(ssl, o_context->psk_sni_entry_list[i].ctx);
2870 SSL_clear_options(ssl, 0xFFFFFFFFL);
2871 SSL_set_options(ssl,
2872 SSL_CTX_get_options(o_context->psk_sni_entry_list[i].ctx));
2874 &o_context->psk_sni_entry_list[i].psk_info.key);
2875 snprintf(lhint,
sizeof(lhint),
"%.*s",
2876 (
int)o_context->psk_sni_entry_list[i].psk_info.hint.length,
2877 o_context->psk_sni_entry_list[i].psk_info.hint.s);
2878 SSL_use_psk_identity_hint(ssl, lhint);
2885 SSL_set_session_secret_cb(ssl, tls_secret_call_back, arg);
2886 return SSL_TLSEXT_ERR_OK;
2889 return SSL_TLSEXT_ERR_ALERT_WARNING;
2902tls_client_hello_call_back(SSL *ssl,
2907 coap_openssl_context_t *dtls_context;
2909 int psk_requested = 0;
2910 const unsigned char *out;
2914 *al = SSL_AD_INTERNAL_ERROR;
2915 return SSL_CLIENT_HELLO_ERROR;
2918 assert(session !=
NULL);
2921 if (session ==
NULL ||
2924 *al = SSL_AD_INTERNAL_ERROR;
2925 return SSL_CLIENT_HELLO_ERROR;
2928 setup_data = &dtls_context->setup_data;
2934 (session->
context->spsk_setup_data.psk_info.key.s &&
2935 session->
context->spsk_setup_data.psk_info.key.length)) {
2936 size_t len = SSL_client_hello_get0_ciphers(ssl, &out);
2937 STACK_OF(SSL_CIPHER) *peer_ciphers =
NULL;
2938 STACK_OF(SSL_CIPHER) *scsvc =
NULL;
2940 if (len && SSL_bytes_to_cipher_list(ssl, out, len,
2941 SSL_client_hello_isv2(ssl),
2942 &peer_ciphers, &scsvc)) {
2944 for (ii = 0; ii < sk_SSL_CIPHER_num(peer_ciphers); ii++) {
2945 const SSL_CIPHER *peer_cipher = sk_SSL_CIPHER_value(peer_ciphers, ii);
2948 "Client cipher: %s (%04x)\n",
2949 SSL_CIPHER_get_name(peer_cipher),
2950 SSL_CIPHER_get_protocol_id(peer_cipher));
2951 if (strstr(SSL_CIPHER_get_name(peer_cipher),
"PSK")) {
2957 sk_SSL_CIPHER_free(peer_ciphers);
2958 sk_SSL_CIPHER_free(scsvc);
2961 if (psk_requested) {
2967 SSL_set_psk_server_callback(ssl, coap_dtls_psk_server_callback);
2973 return SSL_CLIENT_HELLO_SUCCESS;
2983 if (SSL_client_hello_get0_ext(ssl, TLSEXT_TYPE_client_certificate_type,
2986 for (ii = 0; ii < outlen; ii++) {
3002 *al = SSL_AD_UNSUPPORTED_EXTENSION;
3003 return SSL_CLIENT_HELLO_ERROR;
3012 coap_openssl_context_t *context =
3014 const char *sni =
"";
3015 char *sni_tmp =
NULL;
3018 if (SSL_client_hello_get0_ext(ssl, TLSEXT_TYPE_server_name, &out, &outlen) &&
3020 (((out[0]<<8) + out[1] +2) == (
int)outlen) &&
3021 out[2] == TLSEXT_NAMETYPE_host_name &&
3022 (((out[3]<<8) + out[4] +2 +3) == (
int)outlen)) {
3026 sni_tmp = OPENSSL_malloc(outlen+1);
3027 sni_tmp[outlen] =
'\000';
3028 memcpy(sni_tmp, out, outlen);
3032 for (i = 0; i < context->sni_count; i++) {
3033 if (!strcasecmp(sni, context->sni_entry_list[i].sni)) {
3037 if (i == context->sni_count) {
3047 *al = SSL_AD_UNRECOGNIZED_NAME;
3048 return SSL_CLIENT_HELLO_ERROR;
3052 context->sni_entry_list = OPENSSL_realloc(context->sni_entry_list,
3053 (context->sni_count+1)*
sizeof(sni_entry));
3054 context->sni_entry_list[context->sni_count].sni = OPENSSL_strdup(sni);
3055 context->sni_entry_list[context->sni_count].pki_key = *new_entry;
3056 context->sni_count++;
3059 OPENSSL_free(sni_tmp);
3061 sni_setup_data = *setup_data;
3062 sni_setup_data.
pki_key = context->sni_entry_list[i].pki_key;
3074 SSL_VERIFY_CLIENT_ONCE |
3075 SSL_VERIFY_FAIL_IF_NO_PEER_CERT,
3076 tls_verify_call_back);
3078 SSL_set_verify(ssl, SSL_VERIFY_NONE, tls_verify_call_back);
3087 X509_VERIFY_PARAM *param;
3089 param = X509_VERIFY_PARAM_new();
3091 X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
3092 SSL_set1_param(ssl, param);
3093 X509_VERIFY_PARAM_free(param);
3101 return SSL_CLIENT_HELLO_SUCCESS;
3113psk_tls_client_hello_call_back(SSL *ssl,
3118 coap_openssl_context_t *o_context;
3120 const unsigned char *out;
3126 if (!c_session || !c_session->
context) {
3133 setup_data = &c_session->
context->spsk_setup_data;
3139 const char *sni =
"";
3140 char *sni_tmp =
NULL;
3143 if (SSL_client_hello_get0_ext(ssl, TLSEXT_TYPE_server_name, &out, &outlen) &&
3145 (((out[0]<<8) + out[1] +2) == (
int)outlen) &&
3146 out[2] == TLSEXT_NAMETYPE_host_name &&
3147 (((out[3]<<8) + out[4] +2 +3) == (
int)outlen)) {
3151 sni_tmp = OPENSSL_malloc(outlen+1);
3153 sni_tmp[outlen] =
'\000';
3154 memcpy(sni_tmp, out, outlen);
3159#if OPENSSL_VERSION_NUMBER < 0x10101000L
3162 for (i = 0; i < o_context->psk_sni_count; i++) {
3163 if (strcasecmp(sni, o_context->psk_sni_entry_list[i].sni) == 0) {
3167 if (i == o_context->psk_sni_count) {
3180 *al = SSL_AD_UNRECOGNIZED_NAME;
3181 return SSL_CLIENT_HELLO_ERROR;
3184#if OPENSSL_VERSION_NUMBER < 0x10101000L
3185 psk_sni_entry *tmp_entry;
3187 OPENSSL_realloc(o_context->psk_sni_entry_list,
3188 (o_context->psk_sni_count+1)*
sizeof(sni_entry));
3190 o_context->psk_sni_entry_list = tmp_entry;
3191 o_context->psk_sni_entry_list[o_context->psk_sni_count]
3193 OPENSSL_strdup(sni);
3194 if (o_context->psk_sni_entry_list[o_context->psk_sni_count].sni) {
3195 o_context->psk_sni_entry_list[o_context->psk_sni_count].psk_info =
3197 o_context->psk_sni_count++;
3201 new_entry = &o_context->psk_sni_entry_list[i].psk_info;
3206 OPENSSL_free(sni_tmp);
3218 if (new_entry->
hint.
s) {
3219 snprintf(lhint,
sizeof(lhint),
"%.*s",
3222 SSL_use_psk_identity_hint(ssl, lhint);
3225 return SSL_CLIENT_HELLO_SUCCESS;
3228 *al = SSL_AD_INTERNAL_ERROR;
3229 return SSL_CLIENT_HELLO_ERROR;
3238 coap_openssl_context_t *context =
3243 context->setup_data = *setup_data;
3245#if OPENSSL_VERSION_NUMBER < 0x40000000L
3250 if (!defined_engine) {
3251 coap_log_warn(
"setup_pki: OpenSSL Engine not configured, PKI not set up\n");
3258 if (!context->setup_data.verify_peer_cert) {
3260 context->setup_data.check_common_ca = 0;
3262 context->setup_data.allow_self_signed = 1;
3263 context->setup_data.allow_expired_certs = 1;
3264 context->setup_data.cert_chain_validation = 1;
3265 context->setup_data.cert_chain_verify_depth = 10;
3266 context->setup_data.check_cert_revocation = 1;
3267 context->setup_data.allow_no_crl = 1;
3268 context->setup_data.allow_expired_crl = 1;
3269 context->setup_data.allow_bad_md_hash = 1;
3270 context->setup_data.allow_short_rsa_length = 1;
3272#if COAP_SERVER_SUPPORT
3274 if (context->dtls.ctx) {
3276#if OPENSSL_VERSION_NUMBER < 0x10101000L
3277 if (!setup_pki_server(context->dtls.ctx, setup_data))
3286#if OPENSSL_VERSION_NUMBER < 0x10101000L
3287 if (SSLeay() >= 0x10101000L) {
3288 coap_log_warn(
"OpenSSL compiled with %lux, linked with %lux, so "
3289 "no certificate checking\n",
3290 OPENSSL_VERSION_NUMBER, SSLeay());
3292 SSL_CTX_set_tlsext_servername_arg(context->dtls.ctx, &context->setup_data);
3293 SSL_CTX_set_tlsext_servername_callback(context->dtls.ctx,
3294 tls_server_name_call_back);
3296 SSL_CTX_set_client_hello_cb(context->dtls.ctx,
3297 tls_client_hello_call_back,
3301#if !COAP_DISABLE_TCP
3302 if (context->tls.ctx) {
3304#if OPENSSL_VERSION_NUMBER < 0x10101000L
3305 if (!setup_pki_server(context->tls.ctx, setup_data))
3314#if OPENSSL_VERSION_NUMBER < 0x10101000L
3315 if (SSLeay() >= 0x10101000L) {
3316 coap_log_warn(
"OpenSSL compiled with %lux, linked with %lux, so "
3317 "no certificate checking\n",
3318 OPENSSL_VERSION_NUMBER, SSLeay());
3320 SSL_CTX_set_tlsext_servername_arg(context->tls.ctx, &context->setup_data);
3321 SSL_CTX_set_tlsext_servername_callback(context->tls.ctx,
3322 tls_server_name_call_back);
3324 SSL_CTX_set_client_hello_cb(context->tls.ctx,
3325 tls_client_hello_call_back,
3329 SSL_CTX_set_alpn_select_cb(context->tls.ctx, server_alpn_callback,
NULL);
3336#if COAP_CLIENT_SUPPORT
3338 context->psk_pki_enabled &= ~IS_PSK;
3342 if (!context->dtls.ssl) {
3344 context->dtls.ssl = SSL_new(context->dtls.ctx);
3345 if (!context->dtls.ssl)
3347 bio = BIO_new(context->dtls.meth);
3349 SSL_free(context->dtls.ssl);
3350 context->dtls.ssl =
NULL;
3353 SSL_set_bio(context->dtls.ssl, bio, bio);
3354 SSL_set_app_data(context->dtls.ssl,
NULL);
3355 SSL_set_options(context->dtls.ssl, SSL_OP_COOKIE_EXCHANGE);
3358 context->psk_pki_enabled |= IS_PKI;
3367 const char *ca_file,
3370 coap_openssl_context_t *context =
3372 if (context->dtls.ctx) {
3373 if (!SSL_CTX_load_verify_locations(context->dtls.ctx, ca_file, ca_dir)) {
3375 ca_file ? ca_file :
"NULL", ca_dir ? ca_dir :
"NULL");
3379#if !COAP_DISABLE_TCP
3380 if (context->tls.ctx) {
3381 if (!SSL_CTX_load_verify_locations(context->tls.ctx, ca_file, ca_dir)) {
3383 ca_file ? ca_file :
"NULL", ca_dir ? ca_dir :
"NULL");
3393#if OPENSSL_VERSION_NUMBER >= 0x30000000L
3394 coap_openssl_context_t *context =
3396 if (context->dtls.ctx) {
3397 if (!SSL_CTX_set_default_verify_store(context->dtls.ctx)) {
3402#if !COAP_DISABLE_TCP
3403 if (context->tls.ctx) {
3404 if (!SSL_CTX_set_default_verify_store(context->tls.ctx)) {
3413 coap_log_warn(
"coap_context_set_pki_trust_store: (D)TLS environment "
3414 "not supported for OpenSSL < v3.0.0\n");
3421 coap_openssl_context_t *context =
3423 return context->psk_pki_enabled ? 1 : 0;
3430 coap_openssl_context_t *context = (coap_openssl_context_t *)handle;
3432 if (context->dtls.ssl)
3433 SSL_free(context->dtls.ssl);
3434 if (context->dtls.ctx)
3435 SSL_CTX_free(context->dtls.ctx);
3436 if (context->dtls.cookie_hmac)
3437 HMAC_CTX_free(context->dtls.cookie_hmac);
3438 if (context->dtls.meth)
3439 BIO_meth_free(context->dtls.meth);
3440 if (context->dtls.bio_addr)
3441 BIO_ADDR_free(context->dtls.bio_addr);
3442#if !COAP_DISABLE_TCP
3443 if (context->tls.ctx)
3444 SSL_CTX_free(context->tls.ctx);
3445 if (context->tls.meth)
3446 BIO_meth_free(context->tls.meth);
3448 for (i = 0; i < context->sni_count; i++) {
3449 OPENSSL_free(context->sni_entry_list[i].sni);
3450#if OPENSSL_VERSION_NUMBER < 0x10101000L
3451 SSL_CTX_free(context->sni_entry_list[i].ctx);
3454 if (context->sni_count)
3455 OPENSSL_free(context->sni_entry_list);
3456#if OPENSSL_VERSION_NUMBER < 0x10101000L
3457 for (i = 0; i < context->psk_sni_count; i++) {
3458 OPENSSL_free((
char *)context->psk_sni_entry_list[i].sni);
3459 SSL_CTX_free(context->psk_sni_entry_list[i].ctx);
3461 if (context->psk_sni_count)
3462 OPENSSL_free(context->psk_sni_entry_list);
3467#if COAP_SERVER_SUPPORT
3472 coap_ssl_data *data;
3473 coap_dtls_context_t *dtls = &((coap_openssl_context_t *)session->
context->
dtls_context)->dtls;
3478 nssl = SSL_new(dtls->ctx);
3481 nbio = BIO_new(dtls->meth);
3484 SSL_set_bio(nssl, nbio, nbio);
3485 SSL_set_app_data(nssl,
NULL);
3486 SSL_set_options(nssl, SSL_OP_COOKIE_EXCHANGE);
3487 SSL_set_mtu(nssl, (
long)session->
mtu);
3491 SSL_set_app_data(ssl, session);
3493 rbio = SSL_get_rbio(ssl);
3494 data = rbio ? (coap_ssl_data *)BIO_get_data(rbio) :
NULL;
3497 data->session = session;
3502 char *hint = OPENSSL_malloc(psk_hint->
length + 1);
3505 memcpy(hint, psk_hint->
s, psk_hint->
length);
3506 hint[psk_hint->
length] =
'\000';
3507 SSL_use_psk_identity_hint(ssl, hint);
3514 r = SSL_accept(ssl);
3516 int err = SSL_get_error(ssl, r);
3517 if (err != SSL_ERROR_WANT_READ && err != SSL_ERROR_WANT_WRITE)
3535#if COAP_CLIENT_SUPPORT
3539 coap_openssl_context_t *context =
3542 if (context->psk_pki_enabled & IS_PSK) {
3547 SSL_set_tlsext_host_name(ssl, setup_data->
client_sni) != 1) {
3551 SSL_set_psk_client_callback(ssl, coap_dtls_psk_client_callback);
3552#if COAP_SERVER_SUPPORT
3553 SSL_set_psk_server_callback(ssl, coap_dtls_psk_server_callback);
3555 SSL_set_cipher_list(ssl, COAP_OPENSSL_PSK_CIPHERS);
3556#ifdef COAP_OPENSSL_PSK_SECURITY_LEVEL
3562 SSL_set_security_level(ssl, COAP_OPENSSL_PSK_SECURITY_LEVEL);
3566 SSL_set_max_proto_version(ssl, DTLS1_2_VERSION);
3568#if !COAP_DISABLE_TCP
3570 SSL_set_max_proto_version(ssl, TLS1_2_VERSION);
3573 coap_log_debug(
"CoAP Client restricted to (D)TLS1.2 with Identity Hint callback\n");
3576 if ((context->psk_pki_enabled & IS_PKI) ||
3577 (context->psk_pki_enabled & (IS_PSK | IS_PKI)) == 0) {
3584 if (!(context->psk_pki_enabled & IS_PKI)) {
3601#if !COAP_DISABLE_TCP
3603 SSL_set_alpn_protos(ssl, coap_alpn,
sizeof(coap_alpn));
3608 SSL_set_tlsext_host_name(ssl, setup_data->
client_sni) != 1) {
3614 X509_VERIFY_PARAM *param;
3616 param = X509_VERIFY_PARAM_new();
3618 X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_CRL_CHECK);
3619 SSL_set1_param(ssl, param);
3620 X509_VERIFY_PARAM_free(param);
3628 SSL_VERIFY_CLIENT_ONCE |
3629 SSL_VERIFY_FAIL_IF_NO_PEER_CERT,
3630 tls_verify_call_back);
3632 SSL_set_verify(ssl, SSL_VERIFY_NONE, tls_verify_call_back);
3639#if COAP_DTLS_RETRANSMIT_MS != 1000
3640#if OPENSSL_VERSION_NUMBER >= 0x10101000L
3642 DTLS_set_timer_cb(ssl, timer_cb);
3653 coap_ssl_data *data;
3655 coap_openssl_context_t *context = ((coap_openssl_context_t *)session->
context->
dtls_context);
3656 coap_dtls_context_t *dtls = &context->dtls;
3658 ssl = SSL_new(dtls->ctx);
3661 bio = BIO_new(dtls->meth);
3664 data = (coap_ssl_data *)BIO_get_data(bio);
3667 data->session = session;
3668 SSL_set_bio(ssl, bio, bio);
3669 SSL_set_app_data(ssl, session);
3670 SSL_set_options(ssl, SSL_OP_COOKIE_EXCHANGE);
3671 SSL_set_mtu(ssl, (
long)session->
mtu);
3673 if (!setup_client_ssl_session(session, ssl))
3678 r = SSL_connect(ssl);
3680 int ret = SSL_get_error(ssl, r);
3681 if (ret != SSL_ERROR_WANT_READ && ret != SSL_ERROR_WANT_WRITE)
3699 SSL *ssl = (SSL *)session->
tls;
3701 SSL_set_mtu(ssl, (
long)session->
mtu);
3707 SSL *ssl = (SSL *)session->
tls;
3709 if (!SSL_in_init(ssl) && !(SSL_get_shutdown(ssl) & SSL_SENT_SHUTDOWN)) {
3710 int r = SSL_shutdown(ssl);
3723 const uint8_t *data,
size_t data_len) {
3725 SSL *ssl = (SSL *)session->
tls;
3736 r = SSL_write(ssl, data, (
int)data_len);
3739 int err = SSL_get_error(ssl, r);
3740 if (err == SSL_ERROR_WANT_READ || err == SSL_ERROR_WANT_WRITE) {
3743 if (err == SSL_ERROR_ZERO_RETURN)
3745 else if (err == SSL_ERROR_SSL) {
3746 unsigned long e = ERR_get_error();
3748 coap_log_info(
"***%s: coap_dtls_send: cannot send PDU: %d: %s\n",
3750 ERR_GET_REASON(e), ERR_reason_error_string(e));
3753 coap_log_info(
"***%s: coap_dtls_send: cannot send PDU: %d\n",
3784 SSL *ssl = (SSL *)session->
tls;
3785 coap_ssl_data *ssl_data;
3789 rbio = ssl ? SSL_get_rbio(ssl) :
NULL;
3790 ssl_data = rbio ? (coap_ssl_data *)BIO_get_data(rbio) :
NULL;
3791 return ssl_data ? ssl_data->timeout : 1000;
3800 SSL *ssl = (SSL *)session->
tls;
3804 (DTLSv1_handle_timeout(ssl) < 0)) {
3814#if COAP_SERVER_SUPPORT
3817 const uint8_t *data,
size_t data_len) {
3818 coap_dtls_context_t *dtls = &((coap_openssl_context_t *)session->
context->
dtls_context)->dtls;
3819 coap_ssl_data *ssl_data;
3823 SSL_set_mtu(dtls->ssl, (
long)session->
mtu);
3824 rbio = dtls->ssl ? SSL_get_rbio(dtls->ssl) :
NULL;
3825 ssl_data = rbio ? (coap_ssl_data *)BIO_get_data(rbio) :
NULL;
3826 assert(ssl_data !=
NULL);
3831 if (ssl_data->pdu_len) {
3832 coap_log_err(
"** %s: Previous data not read %u bytes\n",
3835 ssl_data->session = session;
3836 ssl_data->pdu = data;
3837 ssl_data->pdu_len = (unsigned)data_len;
3838 r = DTLSv1_listen(dtls->ssl, dtls->bio_addr);
3840 int err = SSL_get_error(dtls->ssl, r);
3841 if (err == SSL_ERROR_WANT_READ || err == SSL_ERROR_WANT_WRITE) {
3861 coap_ssl_data *ssl_data;
3862 SSL *ssl = (SSL *)session->
tls;
3865#if OPENSSL_VERSION_NUMBER >= 0x30000000L
3869 assert(ssl !=
NULL);
3871 int in_init = SSL_in_init(ssl);
3873 rbio = ssl ? SSL_get_rbio(ssl) :
NULL;
3874 ssl_data = rbio ? (coap_ssl_data *)BIO_get_data(rbio) :
NULL;
3880 if (ssl_data->pdu_len) {
3881 coap_log_err(
"** %s: Previous data not read %u bytes\n",
3884 ssl_data->pdu = data;
3885 ssl_data->pdu_len = (unsigned)data_len;
3888#if OPENSSL_VERSION_NUMBER >= 0x30000000L
3892 r = SSL_read(ssl, pdu, (
int)
sizeof(pdu));
3898 ssl_data = (coap_ssl_data *)BIO_get_data(rbio);
3901 int err = SSL_get_error(ssl, r);
3902 if (err == SSL_ERROR_WANT_READ || err == SSL_ERROR_WANT_WRITE) {
3903 if (in_init && SSL_is_init_finished(ssl)) {
3911 if (err == SSL_ERROR_ZERO_RETURN)
3913 else if (err == SSL_ERROR_SSL) {
3914 unsigned long e = ERR_get_error();
3916#if OPENSSL_VERSION_NUMBER >= 0x30000000L
3917#include <openssl/proverr.h>
3918 if (ERR_GET_REASON(e) == PROV_R_SEARCH_ONLY_SUPPORTED_FOR_DIRECTORIES && !retry) {
3924 coap_log_info(
"***%s: coap_dtls_receive: cannot recv PDU: %d: %s\n",
3926 ERR_GET_REASON(e), ERR_reason_error_string(e));
3929 coap_log_info(
"***%s: coap_dtls_receive: cannot send PDU %d\n",
3947 if (ssl_data && ssl_data->pdu_len) {
3949 coap_log_debug(
"coap_dtls_receive: ret %d: remaining data %u\n", r, ssl_data->pdu_len);
3950 ssl_data->pdu_len = 0;
3951 ssl_data->pdu =
NULL;
3958 unsigned int overhead = 37;
3959 const SSL_CIPHER *s_ciph =
NULL;
3961 s_ciph = SSL_get_current_cipher(session->
tls);
3963 unsigned int ivlen, maclen, blocksize = 1, pad = 0;
3965 const EVP_CIPHER *e_ciph;
3969 e_ciph = EVP_get_cipherbynid(SSL_CIPHER_get_cipher_nid(s_ciph));
3971 switch (EVP_CIPHER_mode(e_ciph)) {
3972 case EVP_CIPH_GCM_MODE:
3973 ivlen = EVP_GCM_TLS_EXPLICIT_IV_LEN;
3974 maclen = EVP_GCM_TLS_TAG_LEN;
3977 case EVP_CIPH_CCM_MODE:
3978 ivlen = EVP_CCM_TLS_EXPLICIT_IV_LEN;
3979 SSL_CIPHER_description(s_ciph, cipher,
sizeof(cipher));
3980 if (strstr(cipher,
"CCM8"))
3986 case EVP_CIPH_CBC_MODE:
3987 e_md = EVP_get_digestbynid(SSL_CIPHER_get_digest_nid(s_ciph));
3988 blocksize = EVP_CIPHER_block_size(e_ciph);
3989 ivlen = EVP_CIPHER_iv_length(e_ciph);
3991 maclen = EVP_MD_size(e_md);
3994 case EVP_CIPH_STREAM_CIPHER:
4001 SSL_CIPHER_description(s_ciph, cipher,
sizeof(cipher));
4008 overhead = DTLS1_RT_HEADER_LENGTH + ivlen + maclen + blocksize - 1 + pad;
4013#if !COAP_DISABLE_TCP
4014#if COAP_CLIENT_SUPPORT
4020 coap_openssl_context_t *context = ((coap_openssl_context_t *)session->
context->
dtls_context);
4021 coap_tls_context_t *tls = &context->tls;
4023 ssl = SSL_new(tls->ctx);
4026 bio = BIO_new(tls->meth);
4029 BIO_set_data(bio, session);
4030 SSL_set_bio(ssl, bio, bio);
4031 SSL_set_app_data(ssl, session);
4033 if (!setup_client_ssl_session(session, ssl))
4036 r = SSL_connect(ssl);
4038 int ret = SSL_get_error(ssl, r);
4039 if (ret != SSL_ERROR_WANT_READ && ret != SSL_ERROR_WANT_WRITE)
4041 if (ret == SSL_ERROR_WANT_READ)
4043 if (ret == SSL_ERROR_WANT_WRITE) {
4045#ifdef COAP_EPOLL_SUPPORT
4059 if (SSL_is_init_finished(ssl)) {
4073#if COAP_SERVER_SUPPORT
4078 coap_tls_context_t *tls = &((coap_openssl_context_t *)session->
context->
dtls_context)->tls;
4082 ssl = SSL_new(tls->ctx);
4085 bio = BIO_new(tls->meth);
4088 BIO_set_data(bio, session);
4089 SSL_set_bio(ssl, bio, bio);
4090 SSL_set_app_data(ssl, session);
4094 char *hint = OPENSSL_malloc(psk_hint->
length + 1);
4097 memcpy(hint, psk_hint->
s, psk_hint->
length);
4098 hint[psk_hint->
length] =
'\000';
4099 SSL_use_psk_identity_hint(ssl, hint);
4106 r = SSL_accept(ssl);
4108 int err = SSL_get_error(ssl, r);
4109 if (err != SSL_ERROR_WANT_READ && err != SSL_ERROR_WANT_WRITE)
4111 if (err == SSL_ERROR_WANT_READ)
4113 if (err == SSL_ERROR_WANT_WRITE) {
4115#ifdef COAP_EPOLL_SUPPORT
4129 if (SSL_is_init_finished(ssl)) {
4134#if COAP_DTLS_RETRANSMIT_MS != 1000
4135#if OPENSSL_VERSION_NUMBER >= 0x10101000L
4137 DTLS_set_timer_cb(ssl, timer_cb);
4153 SSL *ssl = (SSL *)session->
tls;
4155 if (!SSL_in_init(ssl) && !(SSL_get_shutdown(ssl) & SSL_SENT_SHUTDOWN)) {
4156 int r = SSL_shutdown(ssl);
4174 SSL *ssl = (SSL *)session->
tls;
4180 in_init = !SSL_is_init_finished(ssl);
4183 r = SSL_write(ssl, data, (
int)data_len);
4186 int err = SSL_get_error(ssl, r);
4187 if (err == SSL_ERROR_WANT_READ || err == SSL_ERROR_WANT_WRITE) {
4188 if (in_init && SSL_is_init_finished(ssl)) {
4194 if (err == SSL_ERROR_WANT_READ)
4196 else if (err == SSL_ERROR_WANT_WRITE) {
4198#ifdef COAP_EPOLL_SUPPORT
4208 if (err == SSL_ERROR_ZERO_RETURN)
4210 else if (err == SSL_ERROR_SSL) {
4211 unsigned long e = ERR_get_error();
4213 coap_log_info(
"***%s: coap_tls_write: cannot send PDU: %d: %s\n",
4215 ERR_GET_REASON(e), ERR_reason_error_string(e));
4218 coap_log_info(
"***%s: coap_tls_send: cannot send PDU: %d\n",
4223 }
else if (in_init && SSL_is_init_finished(ssl)) {
4239 if (r == (ssize_t)data_len)
4256 SSL *ssl = (SSL *)session->
tls;
4264 in_init = !SSL_is_init_finished(ssl);
4267 r = SSL_read(ssl, data, (
int)data_len);
4269 int err = SSL_get_error(ssl, r);
4270 if (err == SSL_ERROR_WANT_READ || err == SSL_ERROR_WANT_WRITE) {
4271 if (in_init && SSL_is_init_finished(ssl)) {
4277 if (err == SSL_ERROR_WANT_READ)
4279 if (err == SSL_ERROR_WANT_WRITE) {
4281#ifdef COAP_EPOLL_SUPPORT
4291 if (err == SSL_ERROR_ZERO_RETURN)
4293 else if (err == SSL_ERROR_SSL) {
4294 unsigned long e = ERR_get_error();
4296 coap_log_info(
"***%s: coap_tls_read: cannot recv PDU: %d: %s\n",
4298 ERR_GET_REASON(e), ERR_reason_error_string(e));
4306 }
else if (in_init && SSL_is_init_finished(ssl)) {
4331#if COAP_SERVER_SUPPORT
4333coap_digest_setup(
void) {
4334 EVP_MD_CTX *digest_ctx = EVP_MD_CTX_new();
4337 EVP_DigestInit_ex(digest_ctx, EVP_sha256(),
NULL);
4343coap_digest_free(coap_digest_ctx_t *digest_ctx) {
4345 EVP_MD_CTX_free(digest_ctx);
4349coap_digest_update(coap_digest_ctx_t *digest_ctx,
4350 const uint8_t *data,
4352 return EVP_DigestUpdate(digest_ctx, data, data_len);
4356coap_digest_final(coap_digest_ctx_t *digest_ctx,
4357 coap_digest_t *digest_buffer) {
4358 unsigned int size =
sizeof(coap_digest_t);
4359 int ret = EVP_DigestFinal_ex(digest_ctx, (uint8_t *)digest_buffer, &size);
4361 coap_digest_free(digest_ctx);
4366#if COAP_WS_SUPPORT || COAP_OSCORE_SUPPORT
4368coap_crypto_output_errors(
const char *prefix) {
4369#if COAP_MAX_LOGGING_LEVEL < _COAP_LOG_WARN
4374 while ((e = ERR_get_error()))
4377 ERR_reason_error_string(e),
4378 ssl_function_definition(e));
4388static struct hash_algs {
4390 const EVP_MD *(*get_hash)(void);
4399static const EVP_MD *
4400get_hash_alg(
cose_alg_t alg,
size_t *length) {
4403 for (idx = 0; idx <
sizeof(hashs) /
sizeof(
struct hash_algs); idx++) {
4404 if (hashs[idx].alg == alg) {
4405 *length = hashs[idx].length;
4406 return hashs[idx].get_hash();
4409 coap_log_debug(
"get_hash_alg: COSE hash %d not supported\n", alg);
4417 unsigned int length;
4418 const EVP_MD *evp_md;
4419 EVP_MD_CTX *evp_ctx =
NULL;
4423 if ((evp_md = get_hash_alg(alg, &hash_length)) ==
NULL) {
4424 coap_log_debug(
"coap_crypto_hash: algorithm %d not supported\n", alg);
4427 evp_ctx = EVP_MD_CTX_new();
4428 if (evp_ctx ==
NULL)
4430 if (EVP_DigestInit_ex(evp_ctx, evp_md,
NULL) == 0)
4433 if (EVP_DigestUpdate(evp_ctx, data->
s, data->
length) == 0)
4439 if (EVP_DigestFinal_ex(evp_ctx,
dummy->s, &length) == 0)
4441 dummy->length = length;
4442 if (hash_length < dummy->length)
4443 dummy->length = hash_length;
4445 EVP_MD_CTX_free(evp_ctx);
4449 coap_crypto_output_errors(
"coap_crypto_hash");
4452 EVP_MD_CTX_free(evp_ctx);
4457#if COAP_OSCORE_SUPPORT
4463#include <openssl/evp.h>
4464#include <openssl/hmac.h>
4471static struct cipher_algs {
4473 const EVP_CIPHER *(*get_cipher)(void);
4478static const EVP_CIPHER *
4482 for (idx = 0; idx <
sizeof(ciphers) /
sizeof(
struct cipher_algs); idx++) {
4483 if (ciphers[idx].alg == alg)
4484 return ciphers[idx].get_cipher();
4486 coap_log_debug(
"get_cipher_alg: COSE cipher %d not supported\n", alg);
4495static struct hmac_algs {
4497 const EVP_MD *(*get_hmac)(void);
4504static const EVP_MD *
4508 for (idx = 0; idx <
sizeof(hmacs) /
sizeof(
struct hmac_algs); idx++) {
4509 if (hmacs[idx].hmac_alg == hmac_alg)
4510 return hmacs[idx].get_hmac();
4512 coap_log_debug(
"get_hmac_alg: COSE HMAC %d not supported\n", hmac_alg);
4518 return get_cipher_alg(alg) !=
NULL;
4527 return get_hmac_alg(hmac_alg) !=
NULL;
4531 if (1 != (Func)) { \
4540 size_t *max_result_len) {
4541 const EVP_CIPHER *cipher;
4544 int result_len = (int)(*max_result_len & INT_MAX);
4545 EVP_CIPHER_CTX *ctx;
4550 assert(params !=
NULL);
4551 if (!params || ((cipher = get_cipher_alg(params->
alg)) ==
NULL)) {
4558 ctx = EVP_CIPHER_CTX_new();
4564 C(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_CCM_SET_L, (
int)ccm->
l,
NULL));
4565 C(EVP_CIPHER_CTX_ctrl(ctx,
4566 EVP_CTRL_AEAD_SET_IVLEN,
4569 C(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, (
int)ccm->
tag_len,
NULL));
4573 C(EVP_EncryptUpdate(ctx,
NULL, &result_len,
NULL, (
int)data->
length));
4574 if (aad && aad->
s && (aad->
length > 0)) {
4575 C(EVP_EncryptUpdate(ctx,
NULL, &result_len, aad->
s, (
int)aad->
length));
4577 C(EVP_EncryptUpdate(ctx, result, &result_len, data->
s, (
int)data->
length));
4580 C(EVP_EncryptFinal_ex(ctx, result + result_len, &tmp));
4584 C(EVP_CIPHER_CTX_ctrl(ctx,
4585 EVP_CTRL_CCM_GET_TAG,
4587 result + result_len));
4589 *max_result_len = result_len + ccm->
tag_len;
4590 EVP_CIPHER_CTX_free(ctx);
4594 coap_crypto_output_errors(
"coap_crypto_aead_encrypt");
4603 size_t *max_result_len) {
4604 const EVP_CIPHER *cipher;
4610 EVP_CIPHER_CTX *ctx;
4615 assert(params !=
NULL);
4616 if (!params || ((cipher = get_cipher_alg(params->
alg)) ==
NULL)) {
4628 memcpy(&rwtag, &tag,
sizeof(rwtag));
4631 ctx = EVP_CIPHER_CTX_new();
4636 C(EVP_CIPHER_CTX_ctrl(ctx,
4637 EVP_CTRL_AEAD_SET_IVLEN,
4640 C(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_AEAD_SET_TAG, (
int)ccm->
tag_len, rwtag));
4641 C(EVP_CIPHER_CTX_ctrl(ctx, EVP_CTRL_CCM_SET_L, (
int)ccm->
l,
NULL));
4646 if (aad && aad->
s && (aad->
length > 0)) {
4647 C(EVP_DecryptUpdate(ctx,
NULL, &len, aad->
s, (
int)aad->
length));
4649 tmp = EVP_DecryptUpdate(ctx, result, &len, data->
s, (
int)data->
length);
4650 EVP_CIPHER_CTX_free(ctx);
4652 *max_result_len = 0;
4655 *max_result_len = len;
4659 coap_crypto_output_errors(
"coap_crypto_aead_decrypt");
4668 unsigned int result_len;
4669 const EVP_MD *evp_md;
4676 if ((evp_md = get_hmac_alg(hmac_alg)) == 0) {
4677 coap_log_debug(
"coap_crypto_hmac: algorithm %d not supported\n", hmac_alg);
4683 result_len = (
unsigned int)
dummy->length;
4691 dummy->length = result_len;
4697 coap_crypto_output_errors(
"coap_crypto_hmac");
4709#pragma GCC diagnostic ignored "-Wunused-function"
struct coap_session_t coap_session_t
#define COAP_SERVER_SUPPORT
#define COAP_RXBUFFER_SIZE
#define COAP_SOCKET_WANT_READ
non blocking socket is waiting for reading
#define COAP_SOCKET_WANT_WRITE
non blocking socket is waiting for writing
void coap_epoll_ctl_mod(coap_socket_t *sock, uint32_t events, const char *func)
Epoll specific function to modify the state of events that epoll is tracking on the appropriate file ...
Library specific build wrapper for coap_internal.h.
void * coap_malloc_type(coap_memory_tag_t type, size_t size)
Allocates a chunk of size bytes and returns a pointer to the newly allocated memory.
void coap_free_type(coap_memory_tag_t type, void *p)
Releases the memory that was allocated by coap_malloc_type().
int coap_dtls_context_set_pki(coap_context_t *ctx COAP_UNUSED, const coap_dtls_pki_t *setup_data COAP_UNUSED, const coap_dtls_role_t role COAP_UNUSED)
coap_tick_t coap_dtls_get_timeout(coap_session_t *session COAP_UNUSED, coap_tick_t now COAP_UNUSED)
ssize_t coap_tls_read(coap_session_t *session COAP_UNUSED, uint8_t *data COAP_UNUSED, size_t data_len COAP_UNUSED)
coap_tick_t coap_dtls_get_context_timeout(void *dtls_context COAP_UNUSED)
int coap_dtls_receive(coap_session_t *session COAP_UNUSED, const uint8_t *data COAP_UNUSED, size_t data_len COAP_UNUSED)
void * coap_dtls_get_tls(const coap_session_t *c_session COAP_UNUSED, coap_tls_library_t *tls_lib)
unsigned int coap_dtls_get_overhead(coap_session_t *session COAP_UNUSED)
int coap_dtls_context_load_pki_trust_store(coap_context_t *ctx COAP_UNUSED)
static coap_log_t dtls_log_level
int coap_dtls_context_check_keys_enabled(coap_context_t *ctx COAP_UNUSED)
ssize_t coap_dtls_send(coap_session_t *session COAP_UNUSED, const uint8_t *data COAP_UNUSED, size_t data_len COAP_UNUSED)
ssize_t coap_tls_write(coap_session_t *session COAP_UNUSED, const uint8_t *data COAP_UNUSED, size_t data_len COAP_UNUSED)
void coap_dtls_session_update_mtu(coap_session_t *session COAP_UNUSED)
int coap_dtls_context_set_pki_root_cas(coap_context_t *ctx COAP_UNUSED, const char *ca_file COAP_UNUSED, const char *ca_path COAP_UNUSED)
int coap_dtls_handle_timeout(coap_session_t *session COAP_UNUSED)
void coap_dtls_free_context(void *handle COAP_UNUSED)
void coap_dtls_free_session(coap_session_t *coap_session COAP_UNUSED)
void * coap_dtls_new_context(coap_context_t *coap_context COAP_UNUSED)
void coap_tls_free_session(coap_session_t *coap_session COAP_UNUSED)
coap_tick_t coap_ticks_from_rt_us(uint64_t t)
Helper function that converts POSIX wallclock time in us to coap ticks.
uint64_t coap_tick_t
This data type represents internal timer ticks with COAP_TICKS_PER_SECOND resolution.
int coap_prng_lkd(void *buf, size_t len)
Fills buf with len random bytes using the default pseudo random number generator.
int coap_handle_event_lkd(coap_context_t *context, coap_event_t event, coap_session_t *session)
Invokes the event handler of context for the given event and data.
int coap_handle_dgram(coap_context_t *ctx, coap_session_t *session, uint8_t *msg, size_t msg_len)
Parses and interprets a CoAP datagram with context ctx.
int coap_crypto_hmac(cose_hmac_alg_t hmac_alg, coap_bin_const_t *key, coap_bin_const_t *data, coap_bin_const_t **hmac)
Create a HMAC hash of the provided data.
int coap_crypto_aead_decrypt(const coap_crypto_param_t *params, coap_bin_const_t *data, coap_bin_const_t *aad, uint8_t *result, size_t *max_result_len)
Decrypt the provided encrypted data into plaintext.
int coap_crypto_aead_encrypt(const coap_crypto_param_t *params, coap_bin_const_t *data, coap_bin_const_t *aad, uint8_t *result, size_t *max_result_len)
Encrypt the provided plaintext data.
int coap_crypto_hash(cose_alg_t alg, const coap_bin_const_t *data, coap_bin_const_t **hash)
Create a hash of the provided data.
int coap_crypto_check_hkdf_alg(cose_hkdf_alg_t hkdf_alg)
Check whether the defined hkdf algorithm is supported by the underlying crypto library.
int coap_crypto_check_cipher_alg(cose_alg_t alg)
Check whether the defined cipher algorithm is supported by the underlying crypto library.
const coap_bin_const_t * coap_get_session_client_psk_identity(const coap_session_t *coap_session)
Get the current client's PSK identity.
void coap_dtls_startup(void)
Initialize the underlying (D)TLS Library layer.
#define COAP_DTLS_RETRANSMIT_MS
int coap_dtls_define_issue(coap_define_issue_key_t type, coap_define_issue_fail_t fail, coap_dtls_key_t *key, const coap_dtls_role_t role, int ret)
Report PKI DEFINE type issue.
void coap_dtls_thread_shutdown(void)
Close down the underlying (D)TLS Library layer.
int coap_dtls_set_cid_tuple_change(coap_context_t *context, uint8_t every)
Set the Connection ID client tuple frequency change for testing CIDs.
int coap_dtls_is_context_timeout(void)
Check if timeout is handled per CoAP session or per CoAP context.
void coap_dtls_shutdown(void)
Close down the underlying (D)TLS Library layer.
const coap_bin_const_t * coap_get_session_client_psk_key(const coap_session_t *coap_session)
Get the current client's PSK key.
void coap_dtls_map_key_type_to_define(const coap_dtls_pki_t *setup_data, coap_dtls_key_t *key)
Map the PKI key definitions to the new DEFINE format.
const coap_bin_const_t * coap_get_session_server_psk_key(const coap_session_t *coap_session)
Get the current server's PSK key.
const coap_bin_const_t * coap_get_session_server_psk_hint(const coap_session_t *coap_session)
Get the current server's PSK identity hint.
@ COAP_DEFINE_KEY_PRIVATE
@ COAP_DEFINE_FAIL_NOT_SUPPORTED
#define COAP_DTLS_HINT_LENGTH
int coap_tls_engine_configure(coap_str_const_t *conf_mem)
Configure an ENGINE for a TLS library.
coap_tls_version_t * coap_get_tls_library_version(void)
Determine the type and version of the underlying (D)TLS library.
struct coap_dtls_key_t coap_dtls_key_t
The structure that holds the PKI key information.
int coap_tls_engine_remove(void)
Remove a previously configured ENGINE from a TLS library.
struct coap_dtls_spsk_info_t coap_dtls_spsk_info_t
The structure that holds the Server Pre-Shared Key and Identity Hint information.
struct coap_dtls_pki_t coap_dtls_pki_t
@ COAP_PKI_KEY_DEF_PKCS11
The PKI key type is PKCS11 (pkcs11:...).
@ COAP_PKI_KEY_DEF_DER_BUF
The PKI key type is DER buffer (ASN.1).
@ COAP_PKI_KEY_DEF_PEM_BUF
The PKI key type is PEM buffer.
@ COAP_PKI_KEY_DEF_PEM
The PKI key type is PEM file.
@ COAP_PKI_KEY_DEF_ENGINE
The PKI key type is to be passed to ENGINE.
@ COAP_PKI_KEY_DEF_RPK_BUF
The PKI key type is RPK in buffer.
@ COAP_PKI_KEY_DEF_DER
The PKI key type is DER file.
@ COAP_PKI_KEY_DEF_PKCS11_RPK
The PKI key type is PKCS11 w/ RPK (pkcs11:...).
@ COAP_DTLS_ROLE_SERVER
Internal function invoked for server.
@ COAP_DTLS_ROLE_CLIENT
Internal function invoked for client.
@ COAP_PKI_KEY_DEFINE
The individual PKI key types are Definable.
@ COAP_ASN1_PKEY_DH
DH type.
@ COAP_ASN1_PKEY_NONE
NONE.
@ COAP_ASN1_PKEY_TLS1_PRF
TLS1_PRF type.
@ COAP_ASN1_PKEY_RSA2
RSA2 type.
@ COAP_ASN1_PKEY_DSA
DSA type.
@ COAP_ASN1_PKEY_DHX
DHX type.
@ COAP_ASN1_PKEY_DSA4
DSA4 type.
@ COAP_ASN1_PKEY_DSA2
DSA2 type.
@ COAP_ASN1_PKEY_RSA
RSA type.
@ COAP_ASN1_PKEY_DSA1
DSA1 type.
@ COAP_ASN1_PKEY_HKDF
HKDF type.
@ COAP_ASN1_PKEY_EC
EC type.
@ COAP_ASN1_PKEY_DSA3
DSA3 type.
@ COAP_ASN1_PKEY_HMAC
HMAC type.
@ COAP_ASN1_PKEY_CMAC
CMAC type.
@ COAP_TLS_LIBRARY_OPENSSL
Using OpenSSL library.
@ COAP_EVENT_DTLS_CLOSED
Triggerred when (D)TLS session closed.
@ COAP_EVENT_DTLS_CONNECTED
Triggered when (D)TLS session connected.
@ COAP_EVENT_DTLS_RENEGOTIATE
Triggered when (D)TLS session renegotiated.
@ COAP_EVENT_DTLS_ERROR
Triggered when (D)TLS error occurs.
#define coap_lock_callback_ret(r, func)
Dummy for no thread-safe code.
#define coap_log_debug(...)
coap_log_t coap_dtls_get_log_level(void)
Get the current (D)TLS logging.
#define coap_dtls_log(level,...)
Logging function.
void coap_dtls_set_log_level(coap_log_t level)
Sets the (D)TLS logging level to the specified level.
const char * coap_session_str(const coap_session_t *session)
Get session description.
#define coap_log_info(...)
#define coap_log_warn(...)
#define coap_log_err(...)
#define coap_log(level,...)
Logging function.
int coap_netif_available(coap_session_t *session)
Function interface to check whether netif for session is still available.
int cose_get_hmac_alg_for_hkdf(cose_hkdf_alg_t hkdf_alg, cose_hmac_alg_t *hmac_alg)
@ COSE_HMAC_ALG_HMAC384_384
@ COSE_HMAC_ALG_HMAC256_256
@ COSE_HMAC_ALG_HMAC512_512
@ COSE_ALGORITHM_SHA_256_64
@ COSE_ALGORITHM_SHA_256_256
@ COSE_ALGORITHM_AES_CCM_16_64_128
@ COSE_ALGORITHM_AES_CCM_16_64_256
int coap_session_refresh_psk_hint(coap_session_t *session, const coap_bin_const_t *psk_hint)
Refresh the session's current Identity Hint (PSK).
int coap_session_refresh_psk_key(coap_session_t *session, const coap_bin_const_t *psk_key)
Refresh the session's current pre-shared key (PSK).
int coap_session_refresh_psk_identity(coap_session_t *session, const coap_bin_const_t *psk_identity)
Refresh the session's current pre-shared identity (PSK).
void coap_session_disconnected_lkd(coap_session_t *session, coap_nack_reason_t reason)
Notify session that it has failed.
@ COAP_SESSION_STATE_HANDSHAKE
void coap_delete_str_const(coap_str_const_t *s)
Deletes the given const string and releases any memory allocated.
coap_binary_t * coap_new_binary(size_t size)
Returns a new binary object with at least size bytes storage allocated.
void coap_delete_binary(coap_binary_t *s)
Deletes the given coap_binary_t object and releases any memory allocated.
coap_str_const_t * coap_new_str_const(const uint8_t *data, size_t size)
Returns a new const string object with at least size+1 bytes storage allocated, and the provided data...
int coap_dtls_cid_is_supported(void)
Check whether (D)TLS CID is available.
int coap_dtls_psk_is_supported(void)
Check whether (D)TLS PSK is available.
int coap_tls_is_supported(void)
Check whether TLS is available.
int coap_oscore_is_supported(void)
Check whether OSCORE is available.
int coap_dtls_is_supported(void)
Check whether DTLS is available.
int coap_dtls_pki_is_supported(void)
Check whether (D)TLS PKI is available.
int coap_dtls_rpk_is_supported(void)
Check whether (D)TLS RPK is available.
int coap_dtls_pkcs11_is_supported(void)
Check whether (D)TLS PKCS11 is available.
CoAP binary data definition with const data.
size_t length
length of binary data
const uint8_t * s
read-only binary data
CoAP binary data definition.
The CoAP stack's global state is stored in a coap_context_t object.
The structure that holds the AES Crypto information.
size_t l
The number of bytes in the length field.
const uint8_t * nonce
must be exactly 15 - l bytes
coap_crypto_key_t key
The Key to use.
size_t tag_len
The size of the Tag.
The common structure that holds the Crypto information.
union coap_crypto_param_t::@214330031347127240203310115060231076271153333053 params
coap_crypto_aes_ccm_t aes
Used if AES type encryption.
cose_alg_t alg
The COSE algorith to use.
The structure that holds the Client PSK information.
coap_bin_const_t identity
The structure used for defining the Client PSK setup data to be used.
uint8_t use_cid
Set to 1 if DTLS Connection ID is to be used.
void * ih_call_back_arg
Passed in to the Identity Hint callback function.
char * client_sni
If not NULL, SNI to use in client TLS setup.
coap_dtls_ih_callback_t validate_ih_call_back
Identity Hint check callback function.
uint8_t ec_jpake
Set to COAP_DTLS_CPSK_SETUP_VERSION to support this version of the struct.
The structure that holds the PKI key information.
coap_pki_key_define_t define
for definable type keys
union coap_dtls_key_t::@352270121062217261103147106045376031351323060256 key
coap_pki_key_t key_type
key format type
The structure used for defining the PKI setup data to be used.
uint8_t allow_no_crl
1 ignore if CRL not there
void * cn_call_back_arg
Passed in to the CN callback function.
uint8_t cert_chain_validation
1 if to check cert_chain_verify_depth
uint8_t use_cid
1 if DTLS Connection ID is to be used (Client only, server always enabled) if supported
uint8_t check_cert_revocation
1 if revocation checks wanted
coap_dtls_pki_sni_callback_t validate_sni_call_back
SNI check callback function.
uint8_t cert_chain_verify_depth
recommended depth is 3
coap_dtls_security_setup_t additional_tls_setup_call_back
Additional Security callback handler that is invoked when libcoap has done the standard,...
uint8_t allow_expired_certs
1 if expired certs are allowed
uint8_t verify_peer_cert
Set to COAP_DTLS_PKI_SETUP_VERSION to support this version of the struct.
char * client_sni
If not NULL, SNI to use in client TLS setup.
uint8_t allow_self_signed
1 if self-signed certs are allowed.
void * sni_call_back_arg
Passed in to the sni callback function.
coap_dtls_cn_callback_t validate_cn_call_back
CN check callback function.
uint8_t allow_expired_crl
1 if expired crl is allowed
uint8_t is_rpk_not_cert
1 is RPK instead of Public Certificate.
uint8_t check_common_ca
1 if peer cert is to be signed by the same CA as the local cert
coap_dtls_key_t pki_key
PKI key definition.
The structure that holds the Server Pre-Shared Key and Identity Hint information.
The structure used for defining the Server PSK setup data to be used.
coap_dtls_psk_sni_callback_t validate_sni_call_back
SNI check callback function.
coap_dtls_id_callback_t validate_id_call_back
Identity check callback function.
void * id_call_back_arg
Passed in to the Identity callback function.
uint8_t ec_jpake
Set to COAP_DTLS_SPSK_SETUP_VERSION to support this version of the struct.
void * sni_call_back_arg
Passed in to the SNI callback function.
coap_dtls_spsk_info_t psk_info
Server PSK definition.
coap_layer_write_t l_write
coap_layer_establish_t l_establish
coap_const_char_ptr_t public_cert
define: Public Cert
coap_asn1_privatekey_type_t private_key_type
define: ASN1 Private Key Type (if needed)
const char * user_pin
define: User pin to access type PKCS11.
coap_const_char_ptr_t private_key
define: Private Key
coap_const_char_ptr_t ca
define: Common CA Certificate
size_t public_cert_len
define Public Cert length (if needed)
size_t ca_len
define CA Cert length (if needed)
coap_pki_define_t private_key_def
define: Private Key type definition
size_t private_key_len
define Private Key length (if needed)
coap_pki_define_t ca_def
define: Common CA type definition
coap_pki_define_t public_cert_def
define: Public Cert type definition
Abstraction of virtual session that can be attached to coap_context_t (client) or coap_endpoint_t (se...
unsigned int dtls_timeout_count
dtls setup retry counter
coap_bin_const_t * psk_key
If client, this field contains the current pre-shared key for server; When this field is NULL,...
coap_socket_t sock
socket object for the session, if any
coap_session_state_t state
current state of relationship with peer
coap_proto_t proto
protocol used
coap_dtls_cpsk_t cpsk_setup_data
client provided PSK initial setup data
size_t mtu
path or CSM mtu (xmt)
int dtls_event
Tracking any (D)TLS events on this session.
void * tls
security parameters
uint16_t max_retransmit
maximum re-transmit count (default 4)
coap_context_t * context
session's context
coap_layer_func_t lfunc[COAP_LAYER_LAST]
Layer functions to use.
coap_socket_flags_t flags
1 or more of COAP_SOCKET* flag values
CoAP string data definition with const data.
const uint8_t * s
read-only string data
size_t length
length of string
The structure used for returning the underlying (D)TLS library information.
uint64_t built_version
(D)TLS Built against Library Version
coap_tls_library_t type
Library type.
uint64_t version
(D)TLS runtime Library Version
const char * s_byte
signed char ptr
const uint8_t * u_byte
unsigned char ptr
1.15.0