s2n-tls icon indicating copy to clipboard operation
s2n-tls copied to clipboard
verified publisher icon aws

Manually validate rsa_pss certificate signature schemes

Open toidiu opened this issue 3 years ago • 1 comments

Problem:

The Openssl function used to parse signatures off certificates does not differentiate between any rsa_pss signature schemes.

The above openssl limitation means we cannot choose a subset of pss schemes for cert signature verification. This came up as an issue when adding a new security policy

https://github.com/aws/s2n-tls/blob/660091ff73029fc91c6578cdb450b85992ff9ef5/tls/s2n_security_policies.c#L1087-L1090

s2n uses Openssl to parse the certificate signatures off the certificates and add restrict certain insecure signatures. However the Openssl function x509_get_signature_nid() does not differentiate between rsa_pss certs and rsa_pss_rsae certs.

Solution:

Improve the certificate signatures check by doing more detailed parsing of the certificate. In order to differentiate between these two signature algorithms, s2n would need to grab the public key encryption type as well has the hash algorithm used in the rsa_pss signature.

Requirements / Acceptance Criteria:

Differentiate between these two types of signature algorithms.

toidiu avatar Aug 09 '22 18:08 toidiu

This is the same issue: https://github.com/aws/s2n-tls/issues/2421

maddeleine avatar Aug 15 '22 17:08 maddeleine