2 * librb: a library used by ircd-ratbox and other things
3 * mbedtls_ratbox.h: embedded data for ARM MbedTLS backend
5 * Copyright (C) 2016 Aaron Jones <aaronmdjones@gmail.com>
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 2 of the License, or
10 * (at your option) any later version.
12 * This program is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
17 * You should have received a copy of the GNU General Public License
18 * along with this program; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301
25 #ifndef RB_MBEDTLS_EMBEDDED_DATA_H
26 #define RB_MBEDTLS_EMBEDDED_DATA_H
28 #include "mbedtls/entropy.h"
29 #include "mbedtls/ctr_drbg.h"
30 #include "mbedtls/certs.h"
31 #include "mbedtls/x509.h"
32 #include "mbedtls/ssl.h"
33 #include "mbedtls/ssl_ciphersuites.h"
34 #include "mbedtls/net.h"
35 #include "mbedtls/error.h"
36 #include "mbedtls/debug.h"
37 #include "mbedtls/dhm.h"
38 #include "mbedtls/version.h"
41 * Personalization string for CTR-DRBG initialization
43 static const char rb_mbedtls_personal_str
[] = "solanum/librb personalization string";
46 * Default list of supported ciphersuites
47 * The user can override this with the ssl_cipher_list option in ircd.conf
49 * The format for this option is the same as the macro names below, but
50 * with underscores replaced with hyphens, and without the initial MBEDTLS_
53 * ssl_cipher_list = "TLS-ECDHE-RSA-WITH-AES-256-GCM-SHA384"
55 * Multiple ciphersuites can be separated by colons (:)
57 * ************************************************************************
59 * The ordering of the following list should be intuitive. Within the list;
61 * * All AEAD forward-secret ciphersuites are located first [1]
62 * * All SHA2 forward-secret ciphersuites are located second
63 * * All remaining forward-secret ciphersuites are located third
64 * * All non-forward-secret ciphersuites are located last, in the same order
66 * [1] Because in practice, they are the only secure ciphersuites available;
67 * the ETM extension for CBC ciphersuites has not seen wide adoption.
69 * In practice, all clients SHOULD support an AEAD forward-secret cipher,
70 * which the server will then negotiate as they are preferred.
72 * This choice can be revisited in future; please consult me first. -- amdj
74 static const int rb_mbedtls_ciphersuites
[] = {
76 // AEAD forward-secret ciphersuites
78 #ifdef MBEDTLS_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
79 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
,
80 MBEDTLS_TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
,
81 MBEDTLS_TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256
,
84 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
,
85 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_GCM_SHA384
,
86 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
,
87 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
,
88 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
,
89 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_GCM_SHA384
,
90 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CCM
,
91 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CCM
,
93 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
,
94 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_GCM_SHA256
,
95 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
,
96 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
,
97 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
,
98 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_GCM_SHA256
,
99 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CCM
,
100 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CCM
,
102 // SHA2 forward-secret ciphersuites
104 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384
,
105 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_256_CBC_SHA384
,
106 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
,
107 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_256_CBC_SHA384
,
108 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA256
,
109 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA256
,
111 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256
,
112 MBEDTLS_TLS_ECDHE_ECDSA_WITH_CAMELLIA_128_CBC_SHA256
,
113 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
,
114 MBEDTLS_TLS_ECDHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
,
115 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
,
116 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA256
,
118 // Remaining forward-secret ciphersuites
120 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA
,
121 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA
,
122 MBEDTLS_TLS_DHE_RSA_WITH_AES_256_CBC_SHA
,
123 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA
,
125 MBEDTLS_TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA
,
126 MBEDTLS_TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
,
127 MBEDTLS_TLS_DHE_RSA_WITH_AES_128_CBC_SHA
,
128 MBEDTLS_TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA
,
130 // Non-forward-secret ciphersuites
132 MBEDTLS_TLS_RSA_WITH_AES_256_GCM_SHA384
,
133 MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_GCM_SHA384
,
134 MBEDTLS_TLS_RSA_WITH_AES_256_CCM
,
136 MBEDTLS_TLS_RSA_WITH_AES_128_GCM_SHA256
,
137 MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_GCM_SHA256
,
138 MBEDTLS_TLS_RSA_WITH_AES_128_CCM
,
140 MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA256
,
141 MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA256
,
143 MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA256
,
144 MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA256
,
146 MBEDTLS_TLS_RSA_WITH_AES_256_CBC_SHA
,
147 MBEDTLS_TLS_RSA_WITH_CAMELLIA_256_CBC_SHA
,
149 MBEDTLS_TLS_RSA_WITH_AES_128_CBC_SHA
,
150 MBEDTLS_TLS_RSA_WITH_CAMELLIA_128_CBC_SHA
,
152 // The end of list sentinel
157 * YES, this is a hardcoded CA certificate.
159 * BEFORE YOU THROW YOUR ARMS UP IN A PANIC ABOUT A BACKDOOR, READ THIS TEXT!
161 * ARM mbedTLS requires a CA certificate to be set in its configuration before it will
162 * request a client certificate from peers. Since we want to do that, and not all
163 * installations will have a CA certificate to hand, we have this.
165 * Its key was securely destroyed after being generated, but even if it wasn't, that
166 * doesn't matter; the IRCd will accept ALL certificates, whether signed by this CA
167 * certificate or not!
169 * After all, it only cares about certificates in as far as to generate a fingerprint
172 * Yes, this is a massive hack, but there is no alternative.
175 static const unsigned char rb_mbedtls_dummy_ca_certificate
[825] = {
176 0x30, 0x82, 0x03, 0x35, 0x30, 0x82, 0x02, 0x1D, 0xA0, 0x03, 0x02, 0x01, 0x02, 0x02, 0x09, 0x00,
177 0x86, 0xC5, 0x1F, 0x62, 0xBE, 0xFC, 0x0B, 0xA8, 0x30, 0x0D, 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86,
178 0xF7, 0x0D, 0x01, 0x01, 0x0B, 0x05, 0x00, 0x30, 0x31, 0x31, 0x2F, 0x30, 0x2D, 0x06, 0x03, 0x55,
179 0x04, 0x03, 0x0C, 0x26, 0x43, 0x68, 0x61, 0x72, 0x79, 0x62, 0x64, 0x69, 0x73, 0x20, 0x6D, 0x62,
180 0x65, 0x64, 0x54, 0x4C, 0x53, 0x20, 0x44, 0x75, 0x6D, 0x6D, 0x79, 0x20, 0x43, 0x41, 0x20, 0x43,
181 0x65, 0x72, 0x74, 0x69, 0x66, 0x69, 0x63, 0x61, 0x74, 0x65, 0x30, 0x1E, 0x17, 0x0D, 0x31, 0x36,
182 0x30, 0x35, 0x30, 0x34, 0x30, 0x38, 0x35, 0x32, 0x35, 0x33, 0x5A, 0x17, 0x0D, 0x34, 0x33, 0x30,
183 0x39, 0x32, 0x30, 0x30, 0x38, 0x35, 0x32, 0x35, 0x33, 0x5A, 0x30, 0x31, 0x31, 0x2F, 0x30, 0x2D,
184 0x06, 0x03, 0x55, 0x04, 0x03, 0x0C, 0x26, 0x43, 0x68, 0x61, 0x72, 0x79, 0x62, 0x64, 0x69, 0x73,
185 0x20, 0x6D, 0x62, 0x65, 0x64, 0x54, 0x4C, 0x53, 0x20, 0x44, 0x75, 0x6D, 0x6D, 0x79, 0x20, 0x43,
186 0x41, 0x20, 0x43, 0x65, 0x72, 0x74, 0x69, 0x66, 0x69, 0x63, 0x61, 0x74, 0x65, 0x30, 0x82, 0x01,
187 0x22, 0x30, 0x0D, 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x01, 0x05, 0x00,
188 0x03, 0x82, 0x01, 0x0F, 0x00, 0x30, 0x82, 0x01, 0x0A, 0x02, 0x82, 0x01, 0x01, 0x00, 0xCA, 0x4B,
189 0xA6, 0xA1, 0x82, 0x5B, 0x06, 0xC6, 0x82, 0x76, 0x8E, 0xB2, 0x22, 0x37, 0x83, 0x91, 0x4B, 0xD0,
190 0xAE, 0x2F, 0xEE, 0x8E, 0x60, 0x04, 0xBA, 0x77, 0x8C, 0xD0, 0xCF, 0x5E, 0xA4, 0xFD, 0x80, 0xA1,
191 0x2E, 0xDC, 0x1F, 0xD9, 0x72, 0x2C, 0x28, 0x03, 0x27, 0x48, 0x23, 0x6E, 0x41, 0x49, 0x62, 0x09,
192 0x2D, 0xCF, 0x87, 0xA1, 0x45, 0x9D, 0x2B, 0x43, 0x6F, 0xBB, 0xDB, 0x23, 0xD8, 0xD9, 0x6D, 0x36,
193 0x4E, 0xA3, 0x85, 0x40, 0x4D, 0x72, 0xEC, 0x7B, 0xEF, 0x2B, 0x13, 0xE4, 0x6F, 0xDA, 0x23, 0x4F,
194 0x1C, 0xE7, 0xEA, 0xD9, 0x17, 0x2B, 0xD6, 0x67, 0x79, 0x42, 0xC3, 0x81, 0x9A, 0x77, 0x64, 0xC7,
195 0xC5, 0x44, 0xE1, 0xA4, 0xA3, 0x50, 0x8C, 0x1F, 0xCA, 0xD3, 0x6F, 0xC7, 0xFF, 0x2C, 0xBA, 0x7B,
196 0x21, 0x0C, 0xF3, 0xA9, 0x6A, 0x89, 0x74, 0x33, 0x60, 0xA1, 0xF8, 0x9F, 0xAA, 0x39, 0xA9, 0x45,
197 0x7E, 0x3D, 0x41, 0x67, 0x04, 0xF5, 0x9F, 0x47, 0x62, 0xAC, 0x65, 0xE0, 0x8D, 0x46, 0x9E, 0xD9,
198 0xE5, 0x77, 0xD5, 0x8C, 0x47, 0xA2, 0xFB, 0x7D, 0x94, 0x27, 0xC9, 0xB9, 0x3F, 0x4D, 0xF4, 0xFD,
199 0x19, 0x3C, 0xF6, 0x24, 0xAE, 0x70, 0xD7, 0x23, 0xE4, 0x64, 0x0A, 0xFC, 0x63, 0x89, 0x8A, 0xFE,
200 0xD0, 0x8E, 0x48, 0x1A, 0xD8, 0xC3, 0xA9, 0xEC, 0x9D, 0x0F, 0xC7, 0xC5, 0x22, 0xBC, 0x45, 0x4A,
201 0x2F, 0x4D, 0xF5, 0x0E, 0x4F, 0xFF, 0xAC, 0xE0, 0x55, 0xF4, 0x86, 0x04, 0x1B, 0x60, 0xDF, 0x4C,
202 0x25, 0xB9, 0xEC, 0x10, 0x0C, 0x54, 0x16, 0xDF, 0x42, 0xF0, 0x07, 0x00, 0x28, 0x81, 0x7C, 0x95,
203 0xAA, 0xC1, 0x01, 0xA3, 0xB8, 0xDF, 0x68, 0xCB, 0x55, 0xA7, 0x80, 0xCC, 0xE5, 0x3D, 0xE1, 0x68,
204 0x10, 0x27, 0x56, 0x94, 0x67, 0xEC, 0x82, 0x66, 0x3D, 0x96, 0x76, 0xC3, 0xEE, 0x23, 0x02, 0x03,
205 0x01, 0x00, 0x01, 0xA3, 0x50, 0x30, 0x4E, 0x30, 0x1D, 0x06, 0x03, 0x55, 0x1D, 0x0E, 0x04, 0x16,
206 0x04, 0x14, 0xFF, 0xC8, 0xBA, 0x56, 0x74, 0xB1, 0x03, 0xA9, 0x79, 0x55, 0xFA, 0x58, 0x86, 0x13,
207 0xDE, 0xC0, 0xFA, 0xF2, 0x94, 0x62, 0x30, 0x1F, 0x06, 0x03, 0x55, 0x1D, 0x23, 0x04, 0x18, 0x30,
208 0x16, 0x80, 0x14, 0xFF, 0xC8, 0xBA, 0x56, 0x74, 0xB1, 0x03, 0xA9, 0x79, 0x55, 0xFA, 0x58, 0x86,
209 0x13, 0xDE, 0xC0, 0xFA, 0xF2, 0x94, 0x62, 0x30, 0x0C, 0x06, 0x03, 0x55, 0x1D, 0x13, 0x04, 0x05,
210 0x30, 0x03, 0x01, 0x01, 0xFF, 0x30, 0x0D, 0x06, 0x09, 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01,
211 0x01, 0x0B, 0x05, 0x00, 0x03, 0x82, 0x01, 0x01, 0x00, 0x3D, 0x35, 0x69, 0x87, 0xEB, 0x41, 0xA9,
212 0x2A, 0x51, 0xF3, 0x28, 0x71, 0xB4, 0x06, 0x7F, 0x15, 0x5A, 0x6D, 0x88, 0x5B, 0xC8, 0x4C, 0xE1,
213 0x6C, 0xC7, 0xCB, 0x93, 0x63, 0x69, 0xFB, 0xA6, 0x6D, 0xC7, 0x44, 0x6B, 0xD6, 0x39, 0x46, 0x34,
214 0xFC, 0x45, 0x23, 0xD2, 0x29, 0x1B, 0xCC, 0x1C, 0x13, 0xD7, 0x63, 0x10, 0x81, 0xF5, 0x82, 0x45,
215 0xEC, 0xDC, 0x20, 0x5F, 0xBB, 0xC3, 0xE6, 0x4A, 0x07, 0xA7, 0xBD, 0x9E, 0xFC, 0x5D, 0xFE, 0xC5,
216 0x43, 0x3A, 0xC6, 0xA4, 0x6C, 0x5B, 0xF9, 0x63, 0x8F, 0xF9, 0xEB, 0xC2, 0xF4, 0xA7, 0xE4, 0x1B,
217 0x23, 0xFA, 0xE1, 0x5A, 0x79, 0xC5, 0x1D, 0x1D, 0xFC, 0xAA, 0x81, 0xF7, 0x21, 0x52, 0xC9, 0x46,
218 0x17, 0x1B, 0x24, 0x4B, 0x14, 0x5C, 0xF9, 0xB5, 0x86, 0x04, 0x80, 0x51, 0x95, 0xCF, 0x4E, 0x47,
219 0x32, 0x8A, 0x1E, 0x52, 0x2E, 0xBF, 0x08, 0x8E, 0x9E, 0xE3, 0x88, 0x45, 0xC3, 0x75, 0xD7, 0xAE,
220 0xC3, 0x7E, 0x7E, 0xE9, 0xC9, 0x5B, 0xD8, 0x58, 0x3B, 0x25, 0x53, 0x0C, 0x00, 0x21, 0x1A, 0x71,
221 0x12, 0x23, 0xA0, 0x35, 0x6E, 0xC9, 0x7D, 0x83, 0x5C, 0x19, 0xE4, 0x05, 0x84, 0x46, 0x4E, 0x50,
222 0xE2, 0x9E, 0x70, 0x2E, 0x74, 0x05, 0xEA, 0x31, 0x04, 0x55, 0xA7, 0xF4, 0x67, 0x95, 0xDC, 0x86,
223 0x1F, 0x9D, 0xA0, 0x5D, 0x7F, 0x29, 0x48, 0x84, 0xEF, 0x13, 0xB8, 0xB3, 0xBF, 0x65, 0xD4, 0x52,
224 0x98, 0x06, 0xE6, 0x8A, 0xB1, 0x36, 0xEA, 0x39, 0xB3, 0x04, 0x2B, 0x6E, 0x64, 0x6E, 0xF3, 0x20,
225 0x74, 0xB6, 0x6E, 0x21, 0x3B, 0x99, 0xFE, 0x6E, 0x70, 0x48, 0x78, 0xEA, 0x31, 0x95, 0xB3, 0xB0,
226 0x0E, 0x48, 0x83, 0x35, 0xA9, 0x74, 0xBF, 0x45, 0x07, 0xC8, 0x5A, 0x12, 0xA2, 0x4D, 0x16, 0xDB,
227 0xB3, 0x1F, 0x72, 0xDE, 0x2A, 0x28, 0xFE, 0x7C, 0x2D
230 #endif /* RB_MBEDTLS_EMBEDDED_DATA_H */
projects / solanum.git / blob