Author: mjordan
Date: Mon Oct 20 09:37:44 2014
New Revision: 426053
URL: http://svnview.digium.com/svn/asterisk?view=rev&rev=426053
Log:
AST-2014-011: Fix POODLE security issues
There are two aspects to the vulnerability:
(1) res_jabber/res_xmpp use SSLv3 only. This patch updates the module to use
TLSv1+. At this time, it does not refactor res_jabber/res_xmpp to use the
TCP/TLS core, which should be done as an improvement at a latter date.
(2) The TCP/TLS core, when tlsclientmethod/sslclientmethod is left unspecified,
will default to the OpenSSL SSLv23_method. This method allows for all
encryption methods, including SSLv2/SSLv3. A MITM can exploit this by
forcing a fallback to SSLv3, which leaves the server vulnerable to POODLE.
This patch adds WARNINGS if a user uses SSLv2/SSLv3 in their configuration,
and explicitly disables SSLv2/SSLv3 if using SSLv23_method.
For TLS clients, Asterisk will default to TLSv1+ and WARN if SSLv2 or SSLv3 is
explicitly chosen. For TLS servers, Asterisk will no longer support SSLv2 or
SSLv3.
Much thanks to abelbeck for reporting the vulnerability and providing a patch
for the res_jabber/res_xmpp modules.
Review: https://reviewboard.asterisk.org/r/4096/
ASTERISK-24425 #close
Reported by: abelbeck
Tested by: abelbeck, opsmonitor, gtjoseph
patches:
asterisk-1.8-jabber-tls.patch uploaded by abelbeck (License 5903)
asterisk-11-jabber-xmpp-tls.patch uploaded by abelbeck (License 5903)
AST-2014-011-1.8.diff uploaded by mjordan (License 6283)
AST-2014-011-11.diff uploaded by mjordan (License 6283)
........
Merged revisions 425986 from http://svn.asterisk.org/svn/asterisk/branches/11
Modified:
certified/branches/11.6/ (props changed)
certified/branches/11.6/UPGRADE.txt
certified/branches/11.6/main/tcptls.c
certified/branches/11.6/res/res_jabber.c
certified/branches/11.6/res/res_xmpp.c
Propchange: certified/branches/11.6/
------------------------------------------------------------------------------
Binary property 'branch-11-merged' - no diff available.
Modified: certified/branches/11.6/UPGRADE.txt
URL:
http://svnview.digium.com/svn/asterisk/certified/branches/11.6/UPGRADE.txt?view=diff&rev=426053&r1=426052&r2=426053
==============================================================================
--- certified/branches/11.6/UPGRADE.txt (original)
+++ certified/branches/11.6/UPGRADE.txt Mon Oct 20 09:37:44 2014
@@ -19,6 +19,18 @@
=== UPGRADE-10.txt -- Upgrade info for 1.8 to 10
===
===========================================================
+
+from 11.6-cert6 to 11.6-cert7:
+
+* Due to the POODLE vulnerability (see
+ https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3566), the
+ default TLS method for TLS clients will no longer allow SSLv3. As
+ SSLv2 was already deprecated, it is no longer allowed by default as
+ well. TLS servers no longer allow SSLv2 or SSLv3 connections. This
+ affects the chan_sip channel driver, AMI, and the Asterisk HTTP server.
+
+* The res_jabber resource module no longer uses SSLv3 to connect to an
+ XMPP server. It will now only use TLSv1 or later methods.
From 11.6-cert2 to 11.6-cert3:
* MixMonitor AMI actions now require users to have authorization classes.
Modified: certified/branches/11.6/main/tcptls.c
URL:
http://svnview.digium.com/svn/asterisk/certified/branches/11.6/main/tcptls.c?view=diff&rev=426053&r1=426052&r2=426053
==============================================================================
--- certified/branches/11.6/main/tcptls.c (original)
+++ certified/branches/11.6/main/tcptls.c Mon Oct 20 09:37:44 2014
@@ -741,6 +741,8 @@
cfg->enabled = 0;
return 0;
#else
+ int disable_ssl = 0;
+
if (!cfg->enabled) {
return 0;
}
@@ -756,22 +758,21 @@
if (client) {
#ifndef OPENSSL_NO_SSL2
if (ast_test_flag(&cfg->flags, AST_SSL_SSLV2_CLIENT)) {
+ ast_log(LOG_WARNING, "Usage of SSLv2 is discouraged due
to known vulnerabilities. Please use 'tlsv1' or leave the TLS method
unspecified!\n");
cfg->ssl_ctx = SSL_CTX_new(SSLv2_client_method());
} else
#endif
if (ast_test_flag(&cfg->flags, AST_SSL_SSLV3_CLIENT)) {
+ ast_log(LOG_WARNING, "Usage of SSLv3 is discouraged due
to known vulnerabilities. Please use 'tlsv1' or leave the TLS method
unspecified!\n");
cfg->ssl_ctx = SSL_CTX_new(SSLv3_client_method());
} else if (ast_test_flag(&cfg->flags, AST_SSL_TLSV1_CLIENT)) {
cfg->ssl_ctx = SSL_CTX_new(TLSv1_client_method());
} else {
- /* SSLv23_client_method() sends SSLv2, this was the
original
- * default for ssl clients before the option was given
to
- * pick what protocol a client should use. In order not
- * to break expected behavior it remains the default. */
+ disable_ssl = 1;
cfg->ssl_ctx = SSL_CTX_new(SSLv23_client_method());
}
} else {
- /* SSLv23_server_method() supports TLSv1, SSLv2, and SSLv3
inbound connections. */
+ disable_ssl = 1;
cfg->ssl_ctx = SSL_CTX_new(SSLv23_server_method());
}
@@ -779,6 +780,17 @@
ast_debug(1, "Sorry, SSL_CTX_new call returned null...\n");
cfg->enabled = 0;
return 0;
+ }
+
+ /* Due to the POODLE vulnerability, completely disable
+ * SSLv2 and SSLv3 if we are not explicitly told to use
+ * them. SSLv23_*_method supports TLSv1+.
+ */
+ if (disable_ssl) {
+ long ssl_opts;
+
+ ssl_opts = SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3;
+ SSL_CTX_set_options(cfg->ssl_ctx, ssl_opts);
}
SSL_CTX_set_verify(cfg->ssl_ctx,
Modified: certified/branches/11.6/res/res_jabber.c
URL:
http://svnview.digium.com/svn/asterisk/certified/branches/11.6/res/res_jabber.c?view=diff&rev=426053&r1=426052&r2=426053
==============================================================================
--- certified/branches/11.6/res/res_jabber.c (original)
+++ certified/branches/11.6/res/res_jabber.c Mon Oct 20 09:37:44 2014
@@ -1282,14 +1282,17 @@
static int aji_tls_handshake(struct aji_client *client)
{
int sock;
+ long ssl_opts;
ast_debug(1, "Starting TLS handshake\n");
/* Choose an SSL/TLS protocol version, create SSL_CTX */
- client->ssl_method = SSLv3_method();
+ client->ssl_method = SSLv23_method();
if (!(client->ssl_context = SSL_CTX_new((SSL_METHOD *)
client->ssl_method))) {
return IKS_NET_TLSFAIL;
}
+ ssl_opts = SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3;
+ SSL_CTX_set_options(client->ssl_context, ssl_opts);
/* Create new SSL session */
if (!(client->ssl_session = SSL_new(client->ssl_context))) {
Modified: certified/branches/11.6/res/res_xmpp.c
URL:
http://svnview.digium.com/svn/asterisk/certified/branches/11.6/res/res_xmpp.c?view=diff&rev=426053&r1=426052&r2=426053
==============================================================================
--- certified/branches/11.6/res/res_xmpp.c (original)
+++ certified/branches/11.6/res/res_xmpp.c Mon Oct 20 09:37:44 2014
@@ -2501,6 +2501,7 @@
{
#ifdef HAVE_OPENSSL
int sock;
+ long ssl_opts;
#endif
if (!strcmp(iks_name(node), "success")) {
@@ -2519,10 +2520,13 @@
ast_log(LOG_ERROR, "Somehow we managed to try to start TLS negotiation
on client '%s' without OpenSSL support, disconnecting\n", client->name);
return -1;
#else
- client->ssl_method = SSLv3_method();
+ client->ssl_method = SSLv23_method();
if (!(client->ssl_context = SSL_CTX_new((SSL_METHOD *)
client->ssl_method))) {
goto failure;
}
+
+ ssl_opts = SSL_OP_NO_SSLv2 | SSL_OP_NO_SSLv3;
+ SSL_CTX_set_options(client->ssl_context, ssl_opts);
if (!(client->ssl_session = SSL_new(client->ssl_context))) {
goto failure;
--
_____________________________________________________________________
-- Bandwidth and Colocation Provided by http://www.api-digital.com --
svn-commits mailing list
To UNSUBSCRIBE or update options visit:
http://lists.digium.com/mailman/listinfo/svn-commits
