1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
|
using System;
using System.Collections.Generic;
using System.IO;
using Org.BouncyCastle.Crypto.Agreement.Srp;
using Org.BouncyCastle.Crypto.Digests;
using Org.BouncyCastle.Math;
using Org.BouncyCastle.Security;
using Org.BouncyCastle.Tls.Crypto;
using Org.BouncyCastle.Tls.Crypto.Impl.BC;
using Org.BouncyCastle.Utilities;
using Org.BouncyCastle.Utilities.Encoders;
namespace Org.BouncyCastle.Tls.Tests
{
internal class MockSrpTlsServer
: SrpTlsServer
{
internal static readonly Srp6Group TEST_GROUP = Tls.Crypto.Srp6StandardGroups.rfc5054_1024;
internal static readonly byte[] TEST_IDENTITY = Strings.ToUtf8ByteArray("client");
internal static readonly byte[] TEST_PASSWORD = Strings.ToUtf8ByteArray("password");
internal static readonly TlsSrpIdentity TEST_SRP_IDENTITY = new BasicTlsSrpIdentity(TEST_IDENTITY,
TEST_PASSWORD);
internal static readonly byte[] TEST_SALT = Strings.ToUtf8ByteArray("salt");
internal static readonly byte[] TEST_SEED_KEY = Strings.ToUtf8ByteArray("seed_key");
internal MockSrpTlsServer()
: base(new BcTlsCrypto(new SecureRandom()), new MyIdentityManager(new BcTlsCrypto(new SecureRandom())))
{
}
protected override IList<ProtocolName> GetProtocolNames()
{
var protocolNames = new List<ProtocolName>();
protocolNames.Add(ProtocolName.Http_2_Tls);
protocolNames.Add(ProtocolName.Http_1_1);
return protocolNames;
}
public override void NotifyAlertRaised(short alertLevel, short alertDescription, string message,
Exception cause)
{
TextWriter output = (alertLevel == AlertLevel.fatal) ? Console.Error : Console.Out;
output.WriteLine("TLS-SRP server raised alert: " + AlertLevel.GetText(alertLevel)
+ ", " + AlertDescription.GetText(alertDescription));
if (message != null)
{
output.WriteLine("> " + message);
}
if (cause != null)
{
output.WriteLine(cause);
}
}
public override void NotifyAlertReceived(short alertLevel, short alertDescription)
{
TextWriter output = (alertLevel == AlertLevel.fatal) ? Console.Error : Console.Out;
output.WriteLine("TLS-SRP server received alert: " + AlertLevel.GetText(alertLevel)
+ ", " + AlertDescription.GetText(alertDescription));
}
public override ProtocolVersion GetServerVersion()
{
ProtocolVersion serverVersion = base.GetServerVersion();
Console.WriteLine("TLS-SRP server negotiated " + serverVersion);
return serverVersion;
}
public override void NotifyHandshakeComplete()
{
base.NotifyHandshakeComplete();
ProtocolName protocolName = m_context.SecurityParameters.ApplicationProtocol;
if (protocolName != null)
{
Console.WriteLine("Server ALPN: " + protocolName.GetUtf8Decoding());
}
byte[] tlsServerEndPoint = m_context.ExportChannelBinding(ChannelBinding.tls_server_end_point);
Console.WriteLine("Server 'tls-server-end-point': " + ToHexString(tlsServerEndPoint));
byte[] tlsUnique = m_context.ExportChannelBinding(ChannelBinding.tls_unique);
Console.WriteLine("Server 'tls-unique': " + ToHexString(tlsUnique));
byte[] srpIdentity = m_context.SecurityParameters.SrpIdentity;
if (srpIdentity != null)
{
string name = Strings.FromUtf8ByteArray(srpIdentity);
Console.WriteLine("TLS-SRP server completed handshake for SRP identity: " + name);
}
}
public override void ProcessClientExtensions(IDictionary<int, byte[]> clientExtensions)
{
if (m_context.SecurityParameters.ClientRandom == null)
throw new TlsFatalAlert(AlertDescription.internal_error);
base.ProcessClientExtensions(clientExtensions);
}
public override IDictionary<int, byte[]> GetServerExtensions()
{
if (m_context.SecurityParameters.ServerRandom == null)
throw new TlsFatalAlert(AlertDescription.internal_error);
return base.GetServerExtensions();
}
public override void GetServerExtensionsForConnection(IDictionary<int, byte[]> serverExtensions)
{
if (m_context.SecurityParameters.ServerRandom == null)
throw new TlsFatalAlert(AlertDescription.internal_error);
base.GetServerExtensionsForConnection(serverExtensions);
}
protected override TlsCredentialedSigner GetDsaSignerCredentials()
{
var clientSigAlgs = m_context.SecurityParameters.ClientSigAlgs;
return TlsTestUtilities.LoadSignerCredentialsServer(m_context, clientSigAlgs, SignatureAlgorithm.dsa);
}
protected override TlsCredentialedSigner GetRsaSignerCredentials()
{
var clientSigAlgs = m_context.SecurityParameters.ClientSigAlgs;
return TlsTestUtilities.LoadSignerCredentialsServer(m_context, clientSigAlgs, SignatureAlgorithm.rsa);
}
protected virtual string ToHexString(byte[] data)
{
return data == null ? "(null)" : Hex.ToHexString(data);
}
internal class MyIdentityManager
: TlsSrpIdentityManager
{
protected SimulatedTlsSrpIdentityManager m_unknownIdentityManager;
internal MyIdentityManager(TlsCrypto crypto)
{
m_unknownIdentityManager = SimulatedTlsSrpIdentityManager.GetRfc5054Default(crypto, TEST_GROUP,
TEST_SEED_KEY);
}
public TlsSrpLoginParameters GetLoginParameters(byte[] identity)
{
if (Arrays.ConstantTimeAreEqual(TEST_IDENTITY, identity))
{
Srp6VerifierGenerator verifierGenerator = new Srp6VerifierGenerator();
verifierGenerator.Init(TEST_GROUP.N, TEST_GROUP.G, new Sha1Digest());
BigInteger verifier = verifierGenerator.GenerateVerifier(TEST_SALT, identity, TEST_PASSWORD);
TlsSrpConfig srpConfig = new TlsSrpConfig();
srpConfig.SetExplicitNG(new BigInteger[]{ TEST_GROUP.N, TEST_GROUP.G });
return new TlsSrpLoginParameters(identity, srpConfig, verifier, TEST_SALT);
}
return m_unknownIdentityManager.GetLoginParameters(identity);
}
}
}
}
|
