forked frompostgres/postgres
- Notifications
You must be signed in to change notification settings - Fork6
Commit01e6f1a
committed
Disallow SSL renegotiation
SSL renegotiation is already disabled as of48d23c7, however this doesnot prevent the server to comply with a client willing to userenegotiation. In the last couple of years, renegotiation had its setof security issues and flaws (like the recentCVE-2021-3449), and itcould be possible to crash the backend with a client attemptingrenegotiation.This commit takes one extra step by disabling renegotiation in thebackend in the same way as SSL compression (f9264d1) or tickets(97d3a0b). OpenSSL 1.1.0h has added an option namedSSL_OP_NO_RENEGOTIATION able to achieve that. In older versionsthere is an option called SSL3_FLAGS_NO_RENEGOTIATE_CIPHERS thatwas undocumented, and could be set within the SSL object created whenthe TLS connection opens, but I have decided not to use it, as it feelstrickier to rely on, and it is not official. Note that this option isnot usable in OpenSSL < 1.1.0h as the internal contents of the *SSLobject are hidden to applications.SSL renegotiation concerns protocols up to TLSv1.2.Per original report from Robert Haas, with a patch based on a suggestionby Andres Freund.Author: Michael PaquierReviewed-by: Daniel GustafssonDiscussion:https://postgr.es/m/YKZBXx7RhU74FlTE@paquier.xyzBackpatch-through: 9.61 parentcba5c70 commit01e6f1a
1 file changed
+10
-0
lines changedLines changed: 10 additions & 0 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
251 | 251 | | |
252 | 252 | | |
253 | 253 | | |
| 254 | + | |
| 255 | + | |
| 256 | + | |
| 257 | + | |
| 258 | + | |
| 259 | + | |
| 260 | + | |
| 261 | + | |
| 262 | + | |
| 263 | + | |
254 | 264 | | |
255 | 265 | | |
256 | 266 | | |
| |||
0 commit comments
Comments
(0)