1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
|
// Copyright Vespa.ai. Licensed under the terms of the Apache 2.0 license. See LICENSE in the project root.
#include "openssl_tls_context_impl.h"
#include "iana_cipher_map.h"
#include "openssl_crypto_codec_impl.h"
#include <vespa/vespalib/crypto/crypto_exception.h>
#include <vespa/vespalib/crypto/openssl_typedefs.h>
#include <vespa/vespalib/net/tls/statistics.h>
#include <vespa/vespalib/net/tls/transport_security_options.h>
#include <vespa/vespalib/util/stringfmt.h>
#include <mutex>
#include <vector>
#include <memory>
#include <stdexcept>
#include <openssl/ssl.h>
#include <openssl/crypto.h>
#include <openssl/err.h>
#include <openssl/x509v3.h>
#include <openssl/asn1.h>
#include <openssl/pem.h>
#include <vespa/log/bufferedlogger.h>
LOG_SETUP(".vespalib.net.tls.openssl_tls_context_impl");
#if (OPENSSL_VERSION_NUMBER < 0x10000000L)
// < 1.0 requires explicit thread ID callback support.
# error "Provided OpenSSL version is too darn old, need at least 1.0.0"
#endif
using namespace vespalib::crypto;
namespace vespalib::net::tls::impl {
namespace {
#if (OPENSSL_VERSION_NUMBER < 0x10100000L)
std::vector<std::unique_ptr<std::mutex>> _g_mutexes;
// Some words on OpenSSL legacy locking: OpenSSL does not implement locking
// itself internally, deferring to user code callbacks that Do The Needful(tm).
// The `n` parameter refers to the nth mutex, which is always < CRYPTO_num_locks().
void openssl_locking_cb(int mode, int n, [[maybe_unused]] const char *file, [[maybe_unused]] int line) {
if (mode & CRYPTO_LOCK) {
_g_mutexes[n]->lock();
} else {
_g_mutexes[n]->unlock();
}
}
#endif
struct OpenSslLibraryResources {
OpenSslLibraryResources();
~OpenSslLibraryResources();
};
OpenSslLibraryResources::OpenSslLibraryResources() {
// Other implementations (Asio, gRPC) disagree on whether main library init
// itself should take place on >= v1.1. We always do it to be on the safe side..!
::SSL_library_init();
::SSL_load_error_strings();
::OpenSSL_add_all_algorithms();
// Luckily, the mutex callback madness is not present on >= v1.1
#if (OPENSSL_VERSION_NUMBER < 0x10100000L)
// Since the init path should happen only once globally, but multiple libraries
// may use OpenSSL, make sure we don't step on any toes if locking callbacks are
// already set up.
if (!::CRYPTO_get_locking_callback()) {
const int num_locks = ::CRYPTO_num_locks();
LOG_ASSERT(num_locks > 0);
_g_mutexes.reserve(static_cast<size_t>(num_locks));
for (int i = 0; i < num_locks; ++i) {
_g_mutexes.emplace_back(std::make_unique<std::mutex>());
}
::CRYPTO_set_locking_callback(openssl_locking_cb);
}
#endif
}
OpenSslLibraryResources::~OpenSslLibraryResources() {
#if (OPENSSL_VERSION_NUMBER < 0x10100000L)
if (::CRYPTO_get_locking_callback() == openssl_locking_cb) {
::CRYPTO_set_locking_callback(nullptr);
}
#endif
ERR_free_strings();
EVP_cleanup();
CRYPTO_cleanup_all_ex_data();
}
// TODO make global init instead..?
void ensure_openssl_initialized_once() {
static OpenSslLibraryResources openssl_resources;
(void) openssl_resources;
}
BioPtr bio_from_string(vespalib::stringref str) {
LOG_ASSERT(str.size() <= INT_MAX);
#if (OPENSSL_VERSION_NUMBER >= 0x10002000L)
BioPtr bio(::BIO_new_mem_buf(str.data(), static_cast<int>(str.size())));
#else
BioPtr bio(::BIO_new_mem_buf(const_cast<char*>(str.data()), static_cast<int>(str.size())));
#endif
if (!bio) {
throw CryptoException("BIO_new_mem_buf");
}
return bio;
}
bool has_pem_eof_on_stack() {
const auto err = ::ERR_peek_last_error();
if (!err) {
return false;
}
return ((ERR_GET_LIB(err) == ERR_LIB_PEM)
&& (ERR_GET_REASON(err) == PEM_R_NO_START_LINE));
}
vespalib::string ssl_error_from_stack() {
char buf[256];
::ERR_error_string_n(::ERR_get_error(), buf, sizeof(buf));
return vespalib::string(buf);
}
// Several OpenSSL functions take a magical user passphrase argument with
// potentially horrible default behavior for password protected input.
//
// From OpenSSL docs (https://www.openssl.org/docs/man1.1.0/crypto/PEM_read_bio_PrivateKey.html):
//
// "If the cb parameters is set to NULL and the u parameter is not NULL
// then the u parameter is interpreted as a null terminated string to use
// as the passphrase. If both cb and u are NULL then the default callback
// routine is used which will typically prompt for the passphrase on the
// current terminal with echoing turned off."
//
// Neat!
//
// Bonus points for being non-const as well.
constexpr inline void* empty_passphrase() {
return const_cast<void*>(static_cast<const void*>(""));
}
void verify_pem_ok_or_eof(::X509* x509) {
// It's OK if we don't have an X509 cert returned iff we failed to find
// something that looks like the start of a PEM entry. This is to catch
// cases where the PEM itself is malformed, since the X509 read routines
// just return either nullptr or a cert object, making it hard to debug.
if (!x509 && !has_pem_eof_on_stack()) {
throw CryptoException(make_string("Failed to add X509 certificate from PEM: %s",
ssl_error_from_stack().c_str()));
}
}
// Attempt to read a PEM encoded (trusted) certificate from the given BIO.
// BIO might contain further certificates if function returns non-nullptr.
// Returns nullptr if no certificate could be loaded. This is usually an error,
// as this should be the first certificate in the chain.
X509Ptr read_trusted_x509_from_bio(::BIO& bio) {
::ERR_clear_error();
// "_AUX" means the certificate is trusted. Why they couldn't name this function
// something with "trusted" instead is left as an exercise to the reader.
X509Ptr x509(::PEM_read_bio_X509_AUX(&bio, nullptr, nullptr, empty_passphrase()));
verify_pem_ok_or_eof(x509.get());
return x509;
}
// Attempt to read a PEM encoded certificate from the given BIO.
// BIO might contain further certificates if function returns non-nullptr.
// Returns nullptr if no certificate could be loaded. This usually implies
// that there are no more certificates left in the chain.
X509Ptr read_untrusted_x509_from_bio(::BIO& bio) {
::ERR_clear_error();
X509Ptr x509(::PEM_read_bio_X509(&bio, nullptr, nullptr, empty_passphrase()));
verify_pem_ok_or_eof(x509.get());
return x509;
}
SslCtxPtr new_tls_ctx_with_auto_init() {
ensure_openssl_initialized_once();
#if (OPENSSL_VERSION_NUMBER < 0x10100000L)
return SslCtxPtr(::SSL_CTX_new(::TLSv1_2_method()));
#else
SslCtxPtr ctx(::SSL_CTX_new(::TLS_method()));
if (!::SSL_CTX_set_min_proto_version(ctx.get(), TLS1_2_VERSION)) {
throw CryptoException("SSL_CTX_set_min_proto_version");
}
return ctx;
#endif
}
} // anon ns
OpenSslTlsContextImpl::OpenSslTlsContextImpl(
const TransportSecurityOptions& ts_opts,
std::shared_ptr<CertificateVerificationCallback> cert_verify_callback,
AuthorizationMode authz_mode)
: _ctx(new_tls_ctx_with_auto_init()),
_authorization_mode(authz_mode),
_cert_verify_callback(std::move(cert_verify_callback)),
_redacted_transport_options(ts_opts.copy_without_private_key())
{
if (!_ctx) {
throw CryptoException("Failed to create new TLS context");
}
LOG_ASSERT(_cert_verify_callback.get() != nullptr);
add_certificate_authorities(ts_opts.ca_certs_pem());
if (!ts_opts.cert_chain_pem().empty() && !ts_opts.private_key_pem().empty()) {
add_certificate_chain(ts_opts.cert_chain_pem());
use_private_key(ts_opts.private_key_pem());
verify_private_key();
}
enable_ephemeral_key_exchange();
disable_compression();
disable_renegotiation();
disable_session_resumption();
enforce_peer_certificate_verification();
set_ssl_ctx_self_reference();
if (!ts_opts.accepted_ciphers().empty()) {
// Due to how we resolve provided ciphers, this implicitly provides an
// _intersection_ between our default cipher suite and the configured one.
set_accepted_cipher_suites(ts_opts.accepted_ciphers());
} else {
set_accepted_cipher_suites(modern_iana_cipher_suites());
}
}
OpenSslTlsContextImpl::~OpenSslTlsContextImpl() {
void* cb_data = SSL_CTX_get_app_data(_ctx.get());
if (cb_data) {
// Referenced callback is kept in a shared_ptr, so lifetime is ensured.
// Either way, clean up after ourselves.
SSL_CTX_set_app_data(_ctx.get(), nullptr);
}
}
void OpenSslTlsContextImpl::add_certificate_authorities(vespalib::stringref ca_pem) {
auto bio = bio_from_string(ca_pem);
::X509_STORE* cert_store = ::SSL_CTX_get_cert_store(_ctx.get()); // Internal pointer, not owned by us.
while (true) {
auto ca_cert = read_untrusted_x509_from_bio(*bio);
if (!ca_cert) {
break;
}
if (::X509_STORE_add_cert(cert_store, ca_cert.get()) != 1) { // Does _not_ take ownership
throw CryptoException("X509_STORE_add_cert");
}
}
}
void OpenSslTlsContextImpl::add_certificate_chain(vespalib::stringref chain_pem) {
auto bio = bio_from_string(chain_pem);
// First certificate in the chain is the node's own (trusted) certificate.
auto own_cert = read_trusted_x509_from_bio(*bio);
if (!own_cert) {
throw CryptoException("No X509 certificates could be found in provided chain");
}
// Ownership of certificate is _not_ transferred, OpenSSL makes internal copy.
// This is not well documented, but is mentioned by other impls.
if (::SSL_CTX_use_certificate(_ctx.get(), own_cert.get()) != 1) {
throw CryptoException("SSL_CTX_use_certificate");
}
// After the node's own certificate comes any intermediate CA-provided certificates.
while (true) {
auto ca_cert = read_untrusted_x509_from_bio(*bio);
if (!ca_cert) {
break; // No more certificates in chain, hooray!
}
// Ownership of certificate _is_ transferred here!
if (!::SSL_CTX_add_extra_chain_cert(_ctx.get(), ca_cert.release())) {
throw CryptoException("SSL_CTX_add_extra_chain_cert");
}
}
}
void OpenSslTlsContextImpl::use_private_key(vespalib::stringref key_pem) {
auto bio = bio_from_string(key_pem);
EvpPkeyPtr key(::PEM_read_bio_PrivateKey(bio.get(), nullptr, nullptr, empty_passphrase()));
if (!key) {
throw CryptoException("Failed to read PEM private key data");
}
// Ownership _not_ taken.
if (::SSL_CTX_use_PrivateKey(_ctx.get(), key.get()) != 1) {
throw CryptoException("SSL_CTX_use_PrivateKey");
}
}
void OpenSslTlsContextImpl::verify_private_key() {
if (::SSL_CTX_check_private_key(_ctx.get()) != 1) {
throw CryptoException("SSL_CTX_check_private_key failed; mismatch between public and private key?");
}
}
void OpenSslTlsContextImpl::enable_ephemeral_key_exchange() {
#if (OPENSSL_VERSION_NUMBER < 0x10100000L)
# if (OPENSSL_VERSION_NUMBER >= 0x10002000L)
// Always enabled by default on higher versions.
// Auto curve selection is preferred over using SSL_CTX_set_ecdh_tmp
if (!::SSL_CTX_set_ecdh_auto(_ctx.get(), 1)) {
throw CryptoException("SSL_CTX_set_ecdh_auto");
}
// New ECDH key per connection.
SSL_CTX_set_options(_ctx.get(), SSL_OP_SINGLE_ECDH_USE);
# else
// Set explicit P-256 curve used for ECDH purposes.
EcKeyPtr ec_curve(::EC_KEY_new_by_curve_name(NID_X9_62_prime256v1));
if (!ec_curve) {
throw CryptoException("EC_KEY_new_by_curve_name(NID_X9_62_prime256v1)");
}
if (!::SSL_CTX_set_tmp_ecdh(_ctx.get(), ec_curve.get())) {
throw CryptoException("SSL_CTX_set_tmp_ecdh");
}
# endif
#endif
}
void OpenSslTlsContextImpl::disable_compression() {
// TLS stream compression is vulnerable to a host of chosen plaintext
// attacks (CRIME, BREACH etc), so disable it.
SSL_CTX_set_options(_ctx.get(), SSL_OP_NO_COMPRESSION);
}
void OpenSslTlsContextImpl::disable_renegotiation() {
#if (OPENSSL_VERSION_NUMBER >= 0x10100080L) // v1.1.0h and beyond
SSL_CTX_set_options(_ctx.get(), SSL_OP_NO_RENEGOTIATION);
#endif
}
void OpenSslTlsContextImpl::disable_session_resumption() {
SSL_CTX_set_session_cache_mode(_ctx.get(), SSL_SESS_CACHE_OFF);
SSL_CTX_set_options(_ctx.get(), SSL_OP_NO_TICKET);
}
namespace {
// There's no good reason for entries to contain embedded nulls, aside from
// trying to be sneaky. See Moxie Marlinspike's Blackhat USA 2009 presentation
// for context.
bool has_embedded_nulls(const char* data, size_t size) {
return (memchr(data, '\0', size) != nullptr);
}
// Normally there should only be 1 CN entry in a certificate, but it's possible
// to specify multiple. We'll only report the last occurring one.
bool fill_certificate_common_name(::X509* cert, PeerCredentials& creds) {
// We're only after CN entries of the subject name
::X509_NAME* subj_name = ::X509_get_subject_name(cert); // _not_ owned by us, never nullptr
int pos = -1;
// X509_NAME_get_index_by_NID returns -1 if there are no further indices containing
// an entry with the given NID _after_ pos. -1 must be passed as the initial pos value,
// since index 0 might be valid.
while ((pos = ::X509_NAME_get_index_by_NID(subj_name, NID_commonName, pos)) >= 0) {
::X509_NAME_ENTRY* entry = ::X509_NAME_get_entry(subj_name, pos);
if (!entry) {
LOG(error, "Got X509 peer certificate with invalid CN entry");
return false;
}
::ASN1_STRING* cn_asn1 = ::X509_NAME_ENTRY_get_data(entry);
if ((cn_asn1 != nullptr) && (cn_asn1->data != nullptr) && (cn_asn1->length > 0)) {
const auto* data = reinterpret_cast<const char*>(cn_asn1->data);
const auto size = static_cast<size_t>(cn_asn1->length);
if (has_embedded_nulls(data, size)) {
LOG(warning, "Got X509 peer certificate with embedded nulls in CN field");
return false;
}
creds.common_name.assign(data, size);
}
}
return true;
}
struct GeneralNamesDeleter {
void operator()(::GENERAL_NAMES* names) {
::GENERAL_NAMES_free(names);
}
};
// Returns empty string if unsupported type or bad content.
vespalib::string get_ia5_string(const ASN1_IA5STRING* ia5_str) {
if ((ia5_str->type == V_ASN1_IA5STRING) && (ia5_str->data != nullptr) && (ia5_str->length > 0)) {
#if (OPENSSL_VERSION_NUMBER >= 0x10100000L)
const char* data = reinterpret_cast<const char*>(::ASN1_STRING_get0_data(ia5_str));
#else
const char* data = reinterpret_cast<const char*>(::ASN1_STRING_data(ia5_str));
#endif
const auto length = static_cast<size_t>(::ASN1_STRING_length(ia5_str));
if (has_embedded_nulls(data, length)) {
LOG(warning, "Got X509 peer certificate with embedded nulls in SAN field");
return {};
}
return {data, length};
}
return {};
}
using GeneralNamesPtr = std::unique_ptr<::GENERAL_NAMES, GeneralNamesDeleter>;
bool fill_certificate_subject_alternate_names(::X509* cert, PeerCredentials& creds) {
GeneralNamesPtr san_names(static_cast<GENERAL_NAMES*>(
::X509_get_ext_d2i(cert, NID_subject_alt_name, nullptr, nullptr)));
if (san_names) {
for (int i = 0; i < sk_GENERAL_NAME_num(san_names.get()); ++i) {
auto* value = sk_GENERAL_NAME_value(san_names.get(), i);
if (value->type == GEN_DNS) {
auto content = get_ia5_string(value->d.dNSName); // arg is const or non-const depending on version...
if (content.empty()) {
return false; // We assume there's something fishy with certs containing empty SANs
}
creds.dns_sans.emplace_back(std::move(content));
} else if (value->type == GEN_URI) {
auto content = get_ia5_string(value->d.uniformResourceIdentifier);
if (content.empty()) {
return false;
}
creds.uri_sans.emplace_back(std::move(content));
}
// TODO support GEN_IPADD SAN?
}
}
return true;
}
} // anon ns
// Note: we try to be as conservative as possible. If anything looks out of place, we fail
// secure by denying the connection.
//
// References:
// https://github.com/boostorg/asio/blob/develop/include/boost/asio/ssl/impl/context.ipp
// https://github.com/boostorg/asio/blob/develop/include/boost/asio/ssl/impl/rfc2818_verification.ipp
int OpenSslTlsContextImpl::verify_cb_wrapper(int preverified_ok, ::X509_STORE_CTX* store_ctx) {
if (!preverified_ok) {
return 0; // If it's already known to be broken, we won't do anything more.
}
// The verify callback is invoked with every certificate in the chain, starting
// with a root CA, then any intermediate CAs, then finally the peer's own certificate
// at depth 0. We currently aren't interested in anything except the peer cert
// since we trust the intermediates to have done their job.
const bool is_peer_cert = (::X509_STORE_CTX_get_error_depth(store_ctx) == 0);
if (!is_peer_cert) {
return 1; // OK for root/intermediate cert. Callback will be invoked again for other certs.
}
// Fetch the SSL instance associated with the X509_STORE_CTX
void* data = ::X509_STORE_CTX_get_ex_data(store_ctx, ::SSL_get_ex_data_X509_STORE_CTX_idx());
LOG_ASSERT(data != nullptr);
auto* ssl = static_cast<::SSL*>(data);
data = SSL_get_app_data(ssl);
LOG_ASSERT(data != nullptr);
auto* codec_impl = static_cast<OpenSslCryptoCodecImpl*>(data);
const ::SSL_CTX* ssl_ctx = ::SSL_get_SSL_CTX(ssl);
LOG_ASSERT(ssl_ctx != nullptr);
auto* self = static_cast<OpenSslTlsContextImpl*>(SSL_CTX_get_app_data(ssl_ctx));
LOG_ASSERT(self != nullptr);
if (self->verify_trusted_certificate(store_ctx, *codec_impl)) {
return 1;
}
ConnectionStatistics::get(SSL_in_accept_init(ssl) != 0).inc_invalid_peer_credentials();
return 0;
}
bool OpenSslTlsContextImpl::verify_trusted_certificate(::X509_STORE_CTX* store_ctx, OpenSslCryptoCodecImpl& codec_impl) {
const auto authz_mode = authorization_mode();
// TODO consider if we want to fill in peer credentials even if authorization is disabled
if (authz_mode == AuthorizationMode::Disable) {
return true;
}
::X509* cert = ::X509_STORE_CTX_get_current_cert(store_ctx); // _not_ owned by us
if (!cert) {
LOG(error, "Got X509_STORE_CTX with preverified_ok == 1 but no current cert");
return false;
}
PeerCredentials creds;
if (!fill_certificate_common_name(cert, creds)) {
return false;
}
if (!fill_certificate_subject_alternate_names(cert, creds)) {
return false;
}
try {
auto authz_result = _cert_verify_callback->verify(creds);
if (!authz_result.success()) {
// Buffer warnings on peer IP address to avoid log flooding.
LOGBT(warning, codec_impl.peer_address().ip_address(),
"Certificate verification of peer '%s' failed with %s",
codec_impl.peer_address().spec().c_str(), creds.to_string().c_str());
return (authz_mode != AuthorizationMode::Enforce);
}
// Store away credentials and role set for later use by requests that arrive over this connection.
// TODO encapsulate as const shared_ptr to immutable object to better facilitate sharing?
codec_impl.set_peer_credentials(std::move(creds));
codec_impl.set_granted_capabilities(authz_result.granted_capabilities());
} catch (std::exception& e) {
LOGBT(error, codec_impl.peer_address().ip_address(),
"Got exception during certificate verification callback for peer '%s': %s",
codec_impl.peer_address().spec().c_str(), e.what());
return false;
} // we don't expect any non-std::exception derived exceptions, so let them terminate the process.
return true;
}
void OpenSslTlsContextImpl::enforce_peer_certificate_verification() {
// We require full mutual certificate verification. No way to configure
// out of this, at least not for the time being.
::SSL_CTX_set_verify(_ctx.get(), SSL_VERIFY_PEER | SSL_VERIFY_FAIL_IF_NO_PEER_CERT, verify_cb_wrapper);
}
void OpenSslTlsContextImpl::set_ssl_ctx_self_reference() {
SSL_CTX_set_app_data(_ctx.get(), this);
}
void OpenSslTlsContextImpl::set_accepted_cipher_suites(const std::vector<vespalib::string>& ciphers) {
vespalib::string openssl_ciphers;
size_t bad_ciphers = 0;
for (const auto& iana_cipher : ciphers) {
auto our_cipher = iana_cipher_suite_to_openssl(iana_cipher);
if (our_cipher) {
if (!openssl_ciphers.empty()) {
openssl_ciphers += ':';
}
openssl_ciphers += our_cipher;
} else {
LOG(warning, "Unsupported cipher: '%s' (bad name or unknown IANA -> OpenSSL mapping)", iana_cipher.c_str());
++bad_ciphers;
}
}
if (bad_ciphers > 0) {
LOG(warning, "A total of %zu configured cipher names were not added to the set of allowed TLS ciphers. "
"Vespa only supports TLS ciphers with forward secrecy and AEAD properties", bad_ciphers);
}
if (openssl_ciphers.empty()) {
throw CryptoException("Configured cipher suite does not contain any supported ciphers");
}
if (::SSL_CTX_set_cipher_list(_ctx.get(), openssl_ciphers.c_str()) != 1) {
throw CryptoException("SSL_CTX_set_cipher_list failed; no provided ciphers could be used");
}
}
}
|
