blob: 743073b04cfc40f2b02291c6f0d90bb3714ab4fa (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
|
using System;
using System.Collections;
using System.IO;
using Org.BouncyCastle.Tls.Crypto.Impl.BC;
using Org.BouncyCastle.Security;
using Org.BouncyCastle.Utilities;
using Org.BouncyCastle.Utilities.Encoders;
namespace Org.BouncyCastle.Tls.Tests
{
internal class MockPskTlsServer
: PskTlsServer
{
internal MockPskTlsServer()
: base(new BcTlsCrypto(new SecureRandom()), new MyIdentityManager())
{
}
protected override IList GetProtocolNames()
{
IList protocolNames = new ArrayList();
protocolNames.Add(ProtocolName.Http_2_Tls);
protocolNames.Add(ProtocolName.Http_1_1);
return protocolNames;
}
public override void NotifyAlertRaised(short alertLevel, short alertDescription, string message,
Exception cause)
{
TextWriter output = (alertLevel == AlertLevel.fatal) ? Console.Error : Console.Out;
output.WriteLine("TLS-PSK server raised alert: " + AlertLevel.GetText(alertLevel)
+ ", " + AlertDescription.GetText(alertDescription));
if (message != null)
{
output.WriteLine("> " + message);
}
if (cause != null)
{
output.WriteLine(cause);
}
}
public override void NotifyAlertReceived(short alertLevel, short alertDescription)
{
TextWriter output = (alertLevel == AlertLevel.fatal) ? Console.Error : Console.Out;
output.WriteLine("TLS-PSK server received alert: " + AlertLevel.GetText(alertLevel)
+ ", " + AlertDescription.GetText(alertDescription));
}
public override ProtocolVersion GetServerVersion()
{
ProtocolVersion serverVersion = base.GetServerVersion();
Console.WriteLine("TLS-PSK server negotiated " + serverVersion);
return serverVersion;
}
public override void NotifyHandshakeComplete()
{
base.NotifyHandshakeComplete();
ProtocolName protocolName = m_context.SecurityParameters.ApplicationProtocol;
if (protocolName != null)
{
Console.WriteLine("Server ALPN: " + protocolName.GetUtf8Decoding());
}
byte[] tlsServerEndPoint = m_context.ExportChannelBinding(ChannelBinding.tls_server_end_point);
Console.WriteLine("Server 'tls-server-end-point': " + ToHexString(tlsServerEndPoint));
byte[] tlsUnique = m_context.ExportChannelBinding(ChannelBinding.tls_unique);
Console.WriteLine("Server 'tls-unique': " + ToHexString(tlsUnique));
byte[] pskIdentity = m_context.SecurityParameters.PskIdentity;
if (pskIdentity != null)
{
string name = Strings.FromUtf8ByteArray(pskIdentity);
Console.WriteLine("TLS-PSK server completed handshake for PSK identity: " + name);
}
}
protected override TlsCredentialedDecryptor GetRsaEncryptionCredentials()
{
return TlsTestUtilities.LoadEncryptionCredentials(m_context,
new string[] { "x509-server-rsa-enc.pem", "x509-ca-rsa.pem" }, "x509-server-key-rsa-enc.pem");
}
protected virtual string ToHexString(byte[] data)
{
return data == null ? "(null)" : Hex.ToHexString(data);
}
protected override ProtocolVersion[] GetSupportedVersions()
{
return ProtocolVersion.TLSv12.Only();
}
internal class MyIdentityManager
: TlsPskIdentityManager
{
public byte[] GetHint()
{
return Strings.ToUtf8ByteArray("hint");
}
public byte[] GetPsk(byte[] identity)
{
if (identity != null)
{
string name = Strings.FromUtf8ByteArray(identity);
if (name.Equals("client"))
{
return Strings.ToUtf8ByteArray("TLS_TEST_PSK");
}
}
return null;
}
}
}
}
|