|
對于Mac OS X上的Python應(yīng)用程序,我需要設(shè)置一個具有TLSv1.2,正向保密和不帶RC4密碼的HTTPS服務(wù)器.使用Paste和pyOpenSSL,我編寫了以下代碼:
from paste import httpserver
from OpenSSL import SSL
context = SSL.Context(SSL.SSLv23_METHOD)
context.use_privatekey_file("/Path/to/my/private.key")
context.use_certificate_chain_file("/Path/to/my/chain-cert.pem")
context.set_options(SSL.OP_NO_SSLv2)
context.set_options(SSL.OP_NO_SSLv3)
context.set_options(SSL.OP_SINGLE_DH_USE)
context.set_cipher_list("EECDH ECDSA AESGCM:EECDH aRSA AESGCM:EECDH ECDSA SHA384:EECDH ECDSA SHA256:EECDH aRSA SHA384:EECDH aRSA SHA256:EECDH:EDH aRSA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4")
logger.debug("OPENSSL version: %s" % SSL.SSLeay_version(SSL.SSLEAY_VERSION))
httpserver.serve(app_logged, host=http_host, port=http_port, server_version=server_version, ssl_context=context, use_threadpool=True, threadpool_workers=15, request_queue_size=5)
但是Safari,Chrome和OpenSSL客戶端無法連接到我的服務(wù)器,并顯示錯誤“無共享密碼”.那么,我做錯了什么����?
注意:Python(2.7.6)和OpenSSL(0.9.8)的默認OS X版本與TLSv1.2不兼容,因此我必須從源代碼編譯OpenSSL 1.0.2和Python 2.7.10.
如果我檢查我的OpenSSL密碼列表,它會給我以下信息:
$/usr/local/bin/openssl ciphers -V 'EECDH ECDSA AESGCM:EECDH aRSA AESGCM:EECDH ECDSA SHA384:EECDH ECDSA SHA256:EECDH aRSA SHA384:EECDH aRSA SHA256:EECDH:EDH aRSA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4'
0xC0,0x2C - ECDHE-ECDSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AESGCM(256) Mac=AEAD
0xC0,0x2B - ECDHE-ECDSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AESGCM(128) Mac=AEAD
0xC0,0x30 - ECDHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=ECDH Au=RSA Enc=AESGCM(256) Mac=AEAD
0xC0,0x2F - ECDHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=ECDH Au=RSA Enc=AESGCM(128) Mac=AEAD
0xC0,0x24 - ECDHE-ECDSA-AES256-SHA384 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AES(256) Mac=SHA384
0xC0,0x23 - ECDHE-ECDSA-AES128-SHA256 TLSv1.2 Kx=ECDH Au=ECDSA Enc=AES(128) Mac=SHA256
0xC0,0x28 - ECDHE-RSA-AES256-SHA384 TLSv1.2 Kx=ECDH Au=RSA Enc=AES(256) Mac=SHA384
0xC0,0x27 - ECDHE-RSA-AES128-SHA256 TLSv1.2 Kx=ECDH Au=RSA Enc=AES(128) Mac=SHA256
0xC0,0x14 - ECDHE-RSA-AES256-SHA SSLv3 Kx=ECDH Au=RSA Enc=AES(256) Mac=SHA1
0xC0,0x0A - ECDHE-ECDSA-AES256-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=AES(256) Mac=SHA1
0xC0,0x13 - ECDHE-RSA-AES128-SHA SSLv3 Kx=ECDH Au=RSA Enc=AES(128) Mac=SHA1
0xC0,0x09 - ECDHE-ECDSA-AES128-SHA SSLv3 Kx=ECDH Au=ECDSA Enc=AES(128) Mac=SHA1
0x00,0x9F - DHE-RSA-AES256-GCM-SHA384 TLSv1.2 Kx=DH Au=RSA Enc=AESGCM(256) Mac=AEAD
0x00,0x6B - DHE-RSA-AES256-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AES(256) Mac=SHA256
0x00,0x39 - DHE-RSA-AES256-SHA SSLv3 Kx=DH Au=RSA Enc=AES(256) Mac=SHA1
0x00,0x88 - DHE-RSA-CAMELLIA256-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(256) Mac=SHA1
0x00,0x9E - DHE-RSA-AES128-GCM-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AESGCM(128) Mac=AEAD
0x00,0x67 - DHE-RSA-AES128-SHA256 TLSv1.2 Kx=DH Au=RSA Enc=AES(128) Mac=SHA256
0x00,0x33 - DHE-RSA-AES128-SHA SSLv3 Kx=DH Au=RSA Enc=AES(128) Mac=SHA1
0x00,0x9A - DHE-RSA-SEED-SHA SSLv3 Kx=DH Au=RSA Enc=SEED(128) Mac=SHA1
0x00,0x45 - DHE-RSA-CAMELLIA128-SHA SSLv3 Kx=DH Au=RSA Enc=Camellia(128) Mac=SHA1
并且我知道Safari 8例如與密碼“ ECDHE-RSA-AES128-SHA256”兼容,那么為什么會有“無共享密碼”錯誤�?
$/usr/local/bin/openssl s_client -connect 192.168.0.17:4443 -tls1_2
CONNECTED(00000003)
140735274361680:error:14094410:SSL routines:ssl3_read_bytes:sslv3 alert handshake failure:s3_pkt.c:1472:SSL alert number 40
140735274361680:error:1409E0E5:SSL routines:ssl3_write_bytes:ssl handshake failure:s3_pkt.c:656:
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 7 bytes and written 0 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : 0000
Session-ID:
Session-ID-ctx:
Master-Key:
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1439975452
Timeout : 7200 (sec)
Verify return code: 0 (ok)
---
替代方法:如果我將密碼列表更改為
context.set_cipher_list("HIGH:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4:@STRENGTH")
它可以正常工作,瀏覽器和openssl客戶端都能夠使用協(xié)議TLSv1.2上的密碼“ AES256-GCM-SHA384”建立安全連接,但它不是ECDHE密碼(因此沒有前向保密性).
編輯正確答案:
對于DH密碼,您需要使用PEM格式的DH參數(shù)文件,可以使用以下命令生成一個:
$/usr/local/bin/openssl dhparam 2048 -out dhparams.pem
對于ECDHE密碼,您將需要為SSL上下文設(shè)置橢圓曲線.您可以使用pyOpenSSL檢索系統(tǒng)上的可用曲線:
OpenSSL.crypto.get_elliptic_curves()
這給了我們正確的以下python代碼:
from paste import httpserver
from OpenSSL import SSL
from OpenSSL import crypto
context = SSL.Context(SSL.SSLv23_METHOD)
context.use_privatekey_file("/Path/to/my/private.key")
context.use_certificate_chain_file("/Path/to/my/chain-cert.pem")
context.load_tmp_dh("/Path/to/my/dhparams.pem")
context.set_tmp_ecdh(crypto.get_elliptic_curve("prime256v1"))
context.set_options(SSL.OP_NO_SSLv2)
context.set_options(SSL.OP_NO_SSLv3)
context.set_options(SSL.OP_SINGLE_DH_USE)
context.set_cipher_list("EECDH ECDSA AESGCM:EECDH aRSA AESGCM:EECDH ECDSA SHA384:EECDH ECDSA SHA256:EECDH aRSA SHA384:EECDH aRSA SHA256:EECDH:EDH aRSA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4")
logger.debug("OPENSSL version: %s" % SSL.SSLeay_version(SSL.SSLEAY_VERSION))
httpserver.serve(app_logged, host=http_host, port=http_port, server_version=server_version, ssl_context=context, use_threadpool=True, threadpool_workers=15, request_queue_size=5)
解決方法: 要支持DH密碼(DHE-RSA -…),您需要具有DH params文件并指定它:
context.load_tmp_dh("dhparams.pem")
要創(chuàng)建此類文件,您可以使用OpenSSL
openssl dhparam -out dhparams.pem 2048
為了支持ECDH密碼,您需要指定應(yīng)使用的曲線.我沒有支持它的pyOpenSSL版本,但根據(jù)documentation,它應(yīng)該是
context.set_tmp_ecdh( OpenSSL.crypto.get_elliptic_curve( "prime256v1" ))
來源:https://www./content-1-566751.html
|
