Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Force TLS client to receive stapled OCSP responses to all certificates in the chain #8032

Open
Dor-kpf opened this issue Oct 1, 2024 · 1 comment
Open

Force TLS client to receive stapled OCSP responses to all certificates in the chain #8032

Dor-kpf opened this issue Oct 1, 2024 · 1 comment
Assignees
@miyazakh

Comments

@Dor-kpf
Copy link

Dor-kpf commented Oct 1, 2024
edited
Loading

Version

5.7.2

Description

WolfSSL built with --enable-ocsp --enable-ocspstapling --enable-ocspstapling2

Hello!
I have a TLS client application that uses OCSP stapling only (the client will not send OCSP requests to OCSP responder) to get the revocation status of all the certificates (intermediates + server's certificate) in the chain from the TLS server. If a stapled response is missing from the Certificate Status message, I would like to abort the TLS handshake.
I have enabled OCSP stapling V2 (for TLS 1.2) so the client will request multi-stapling and may receive the stapled responses to intermediates as well.

How I enabled OCSP stapling V2:

wolfSSL_EnableOCSPStapling(m_ssl)
wolfSSL_UseOCSPStaplingV2(m_ssl, WOLFSSL_CSR2_OCSP_MULTI, 0)

I have also called wolfSSL_CTX_EnableOCSPMustStaple(m_ctx) but looking at the code in SanityCheckMsgReceived function, this will only force the reception of the Certificate Status message, but this message may still be missing some responses.

My questions are:

  1. Does WolfSSL provide a way for the TLS client to detect, during the TLS handshake, that a stapled response for either the intermediates or the server's certificate are missing from the Certificate Status message, so I can abort the TLS handshake in such case?
  2. Alternatively, does WolfSSL provide a way to read the stapled responses in the Certificate Status message (inside the VerifyCallback for example) so I can examine them and check if there are missing staples and abort the TLS handshake accordingly?
  3. Does WolfSSL support multi-stapling with TLS 1.3 (in the CertificateEntry structure of the Certificate message)?

Looks like all the OCSP stapling logic and checking are done internally by WolfSSL in wolfSSL_connect function and that the stapled responses are not exposed to the user by WolfSSL's API.

Thank you!
@embhorn embhorn assigned embhorn and miyazakh and unassigned embhorn Oct 1, 2024
@miyazakh
Copy link
Contributor

miyazakh commented Oct 2, 2024
edited
Loading

@Dor-kpf
Thank you for your interest in wolfSSL.

Q1, Q2 : I don't think wolfSSL provides an interface or any way to access Certificate Status Message raw data as you mentioned. Let me double-check.
Q3 : PR#7766 is supposed to support this.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@miyazakh miyazakh

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@miyazakh @Dor-kpf @embhorn