Fix for the curve logic to pick the hightest strength, not just the default 256-bit. Added test for setting user curve. ./examples -H useSupCurve.

2018-09-21 09:27:48 -07:00
parent 39019c2418
commit 24f9f12844
3 changed files with 35 additions and 7 deletions
--- a/examples/client/client.c
+++ b/examples/client/client.c
@ -990,6 +990,7 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
    int   doSTARTTLS    = 0;
    char* starttlsProt = NULL;
    int   useVerifyCb = 0;
+    int   useSupCurve = 0;

 #ifdef WOLFSSL_TRUST_PEER_CERT
    const char* trustCert  = NULL;
@ -1088,6 +1089,7 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
    (void)useX25519;
    (void)helloRetry;
    (void)onlyKeyShare;
+    (void)useSupCurve;

    StackTrap();

@ -1220,6 +1222,10 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
                    printf("Verify should fail\n");
                    myVerifyFail = 1;
                }
+                else if (XSTRNCMP(myoptarg, "useSupCurve", 11) == 0) {
+                    printf("Test use supported curve\n");
+                    useSupCurve = 1;
+                }
                else {
                    Usage();
                    XEXIT_T(MY_EX_USAGE);
@ -1440,6 +1446,7 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
            case 't' :
                #ifdef HAVE_CURVE25519
                    useX25519 = 1;
+                    useSupCurve = 1;
                    #if defined(WOLFSSL_TLS13) && defined(HAVE_ECC)
                        onlyKeyShare = 2;
                    #endif
@ -1917,22 +1924,34 @@ THREAD_RETURN WOLFSSL_THREAD client_test(void* args)
            err_sys("DisableExtendedMasterSecret failed");
        }
 #endif
-#if defined(HAVE_CURVE25519) && defined(HAVE_SUPPORTED_CURVES)
+#if defined(HAVE_SUPPORTED_CURVES)
+    #if defined(HAVE_CURVE25519)
    if (useX25519) {
        if (wolfSSL_CTX_UseSupportedCurve(ctx, WOLFSSL_ECC_X25519)
                                                           != WOLFSSL_SUCCESS) {
            err_sys("unable to support X25519");
        }
-        if (wolfSSL_CTX_UseSupportedCurve(ctx, WOLFSSL_ECC_SECP256R1)
-                                                           != WOLFSSL_SUCCESS) {
-            err_sys("unable to support secp256r1");
    }
+    #endif /* HAVE_CURVE25519 */
+    #ifdef HAVE_ECC
+    if (useSupCurve) {
+        #if !defined(NO_ECC_SECP) && \
+            (defined(HAVE_ECC384) || defined(HAVE_ALL_CURVES))
        if (wolfSSL_CTX_UseSupportedCurve(ctx, WOLFSSL_ECC_SECP384R1)
                                                           != WOLFSSL_SUCCESS) {
            err_sys("unable to support secp384r1");
        }
+        #endif
+        #if !defined(NO_ECC_SECP) && \
+            (!defined(NO_ECC256) || defined(HAVE_ALL_CURVES))
+        if (wolfSSL_CTX_UseSupportedCurve(ctx, WOLFSSL_ECC_SECP256R1)
+                                                           != WOLFSSL_SUCCESS) {
+            err_sys("unable to support secp256r1");
        }
-#endif /* HAVE_CURVE25519 && HAVE_SUPPORTED_CURVES */
+        #endif
+    }
+    #endif /* HAVE_ECC */
+#endif /* HAVE_SUPPORTED_CURVES */

 #ifdef WOLFSSL_TLS13
    if (noPskDheKe)
--- a/src/tls.c
+++ b/src/tls.c
@ -3932,7 +3932,7 @@ int TLSX_ValidateSupportedCurves(WOLFSSL* ssl, byte first, byte second) {
            defSz = octets;
        }

-        if (currOid == 0 && ssl->eccTempKeySz == octets)
+        if (currOid == 0 && ssl->eccTempKeySz <= octets)
            currOid = oid;
        if ((nextOid == 0 || nextSz > octets) && ssl->eccTempKeySz <= octets) {
            nextOid = oid;
--- a/tests/test.conf
+++ b/tests/test.conf
@ -2355,3 +2355,12 @@
 -h localhost
 -A ./certs/test/server-localhost.pem
 -m
+
+# server TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+
+# client TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384 with user curve (384 or 256)
+-v 3
+-l ECDHE-RSA-AES256-GCM-SHA384
+-H useSupCurve