Set a compile-time limit to X.509 chain length

commit: fd6c85c3eb39a59231843bcabc46e5fcbfba30d5 [log] [tgz]
author: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Thu Nov 20 16:34:20 2014 +0100
committer: Manuel Pégourié-Gonnard <mpg@elzevir.fr> Thu Nov 20 16:37:41 2014 +0100
tree: 65b8af116a7702a23e96b46f2d9a885f476a069f
parent: 89d69b398ce52956f21eddb0586d75ba9c2b1f2f [diff]
diff --git a/include/polarssl/config.h b/include/polarssl/config.h
index fa15b37..a0ec2f3 100644
--- a/include/polarssl/config.h
+++ b/include/polarssl/config.h

@@ -2185,6 +2185,9 @@
 /* Debug options */
 //#define POLARSSL_DEBUG_DFL_MODE POLARSSL_DEBUG_LOG_FULL /**< Default log: Full or Raw */
 
+/* X509 options */
+//#define POLARSSL_X509_MAX_INTERMEDIATE_CA   8   /**< Maximum number of intermediate CAs in a verification chain. */
+
 /* \} name SECTION: Module configuration options */
 
 #include "check_config.h"

diff --git a/include/polarssl/x509.h b/include/polarssl/x509.h
index 9b0bcb7..3fe6820 100644
--- a/include/polarssl/x509.h
+++ b/include/polarssl/x509.h

@@ -45,6 +45,18 @@
  * \{
  */
 
+#if !defined(POLARSSL_X509_MAX_INTERMEDIATE_CA)
+/**
+ * Maximum number of intermediate CAs in a verification chain.
+ * That is, maximum length of the chain, excluding the end-entity certificate
+ * and the trusted root certificate.
+ *
+ * Set this to a low value to prevent an adversary from making you waste
+ * resources verifying an overlong certificate chain.
+ */
+#define POLARSSL_X509_MAX_INTERMEDIATE_CA   8
+#endif
+
 /**
  * \name X509 Error codes
  * \{
commit	fd6c85c3eb39a59231843bcabc46e5fcbfba30d5	[log] [tgz]
author	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Thu Nov 20 16:34:20 2014 +0100
committer	Manuel Pégourié-Gonnard <mpg@elzevir.fr>	Thu Nov 20 16:37:41 2014 +0100
tree	65b8af116a7702a23e96b46f2d9a885f476a069f
parent	89d69b398ce52956f21eddb0586d75ba9c2b1f2f [diff]