| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136 |
- #if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
- #pragma warning disable
- using System;
- using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto;
- using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto.Parameters;
- using BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto.Utilities;
- namespace BestHTTP.SecureProtocol.Org.BouncyCastle.Crypto.Generators
- {
- /**
- * Basic KDF generator for derived keys and ivs as defined by IEEE P1363a/ISO 18033
- * <br/>
- * This implementation is based on ISO 18033/P1363a.
- */
- public class BaseKdfBytesGenerator
- : IDerivationFunction
- {
- private int counterStart;
- private IDigest digest;
- private byte[] shared;
- private byte[] iv;
- /**
- * Construct a KDF Parameters generator.
- *
- * @param counterStart value of counter.
- * @param digest the digest to be used as the source of derived keys.
- */
- public BaseKdfBytesGenerator(int counterStart, IDigest digest)
- {
- this.counterStart = counterStart;
- this.digest = digest;
- }
- public virtual void Init(IDerivationParameters parameters)
- {
- if (parameters is KdfParameters)
- {
- KdfParameters p = (KdfParameters)parameters;
- shared = p.GetSharedSecret();
- iv = p.GetIV();
- }
- else if (parameters is Iso18033KdfParameters)
- {
- Iso18033KdfParameters p = (Iso18033KdfParameters)parameters;
- shared = p.GetSeed();
- iv = null;
- }
- else
- {
- throw new ArgumentException("KDF parameters required for KDF Generator");
- }
- }
- /**
- * return the underlying digest.
- */
- public virtual IDigest Digest
- {
- get { return digest; }
- }
- /**
- * fill len bytes of the output buffer with bytes generated from
- * the derivation function.
- *
- * @throws ArgumentException if the size of the request will cause an overflow.
- * @throws DataLengthException if the out buffer is too small.
- */
- public virtual int GenerateBytes(byte[] output, int outOff, int length)
- {
- if ((output.Length - length) < outOff)
- throw new DataLengthException("output buffer too small");
- long oBytes = length;
- int outLen = digest.GetDigestSize();
- //
- // this is at odds with the standard implementation, the
- // maximum value should be hBits * (2^32 - 1) where hBits
- // is the digest output size in bits. We can't have an
- // array with a long index at the moment...
- //
- if (oBytes > ((2L << 32) - 1))
- throw new ArgumentException("Output length too large");
- int cThreshold = (int)((oBytes + outLen - 1) / outLen);
- byte[] dig = new byte[digest.GetDigestSize()];
- byte[] C = new byte[4];
- Pack.UInt32_To_BE((uint)counterStart, C, 0);
- uint counterBase = (uint)(counterStart & ~0xFF);
- for (int i = 0; i < cThreshold; i++)
- {
- digest.BlockUpdate(shared, 0, shared.Length);
- digest.BlockUpdate(C, 0, 4);
- if (iv != null)
- {
- digest.BlockUpdate(iv, 0, iv.Length);
- }
- digest.DoFinal(dig, 0);
- if (length > outLen)
- {
- Array.Copy(dig, 0, output, outOff, outLen);
- outOff += outLen;
- length -= outLen;
- }
- else
- {
- Array.Copy(dig, 0, output, outOff, length);
- }
- if (++C[3] == 0)
- {
- counterBase += 0x100;
- Pack.UInt32_To_BE(counterBase, C, 0);
- }
- }
- digest.Reset();
- return (int)oBytes;
- }
- }
- }
- #pragma warning restore
- #endif
|
