OpenSSL: Generate DH parameters automatically if not set with dh_file

This is the recommended way of using DH in OpenSSL TLS handshake.

Signed-off-by: Jouni Malinen <j@w1.fi>

hostapd/hostapd.conf

@@ -1254,12 +1254,11 @@ eap_server=0
 
 # dh_file: File path to DH/DSA parameters file (in PEM format)
 # This is an optional configuration file for setting parameters for an
-# ephemeral DH key exchange. In most cases, the default RSA authentication does
+# ephemeral DH key exchange. If the file is in DSA parameters format, it will
-# not use this configuration. However, it is possible setup RSA to use
+# be automatically converted into DH params. If the used TLS library supports
-# ephemeral DH key exchange. In addition, ciphers with DSA keys always use
+# automatic DH parameter selection, that functionality will be used if this
-# ephemeral DH keys. This can be used to achieve forward secrecy. If the file
+# parameter is not set. DH parameters are required if anonymous EAP-FAST is
-# is in DSA parameters format, it will be automatically converted into DH
+# used.
-# params. This parameter is required if anonymous EAP-FAST is used.
 # You can generate DH parameters file with OpenSSL, e.g.,
 # "openssl dhparam -out /etc/hostapd.dh.pem 2048"
 #dh_file=/etc/hostapd.dh.pem

src/crypto/tls_openssl.c

@@ -4001,10 +4001,12 @@ static int tls_global_dh(struct tls_data *data, const char *dh_file)
 	EVP_PKEY *pkey = NULL, *tmpkey = NULL;
 	bool dsa = false;
 
-	if (!dh_file)
-		return 0;
 	if (!ssl_ctx)
 		return -1;
+	if (!dh_file) {
+		SSL_CTX_set_dh_auto(ssl_ctx, 1);
+		return 0;
+	}
 
 	bio = BIO_new_file(dh_file, "r");
 	if (!bio) {
@@ -4066,10 +4068,14 @@ static int tls_global_dh(struct tls_data *data, const char *dh_file)
 	DH *dh;
 	BIO *bio;
 
-	if (dh_file == NULL)
+	if (!ssl_ctx)
-		return 0;
-	if (ssl_ctx == NULL)
 		return -1;
+	if (!dh_file) {
+#if OPENSSL_VERSION_NUMBER >= 0x10100000L
+		SSL_CTX_set_dh_auto(ssl_ctx, 1);
+#endif
+		return 0;
+	}
 
 	bio = BIO_new_file(dh_file, "r");
 	if (bio == NULL) {