Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
wartheking
/
DataStudy
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Branch: master
Branche Tagy
DataStudy
/
Assets
/
Plugins
/
Best HTTP
/
Source
/
SecureProtocol
/
tls
/
ClientHello.cs

ClientHello.cs 6.4 KB
Permanentný odkaz História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181 
  1. #if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
    2. 

  2. #pragma warning disable
    3. 

  3. using System;
    4. 

  4. using System.Collections;
    5. 

  5. using System.IO;
    6. 

  6. 

  7. using BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities;
    8. 

  8. using BestHTTP.SecureProtocol.Org.BouncyCastle.Utilities.IO;
    9. 

  9. 

  10. namespace BestHTTP.SecureProtocol.Org.BouncyCastle.Tls
    11. 

  11. {
    12. 

  12.     public sealed class ClientHello
    13. 

  13.     {
    14. 

  14.         private readonly ProtocolVersion m_version;
    15. 

  15.         private readonly byte[] m_random;
    16. 

  16.         private readonly byte[] m_sessionID;
    17. 

  17.         private readonly byte[] m_cookie;
    18. 

  18.         private readonly int[] m_cipherSuites;
    19. 

  19.         private readonly IDictionary m_extensions;
    20. 

  20.         private readonly int m_bindersSize;
    21. 

  21. 

  22.         public ClientHello(ProtocolVersion version, byte[] random, byte[] sessionID, byte[] cookie,
    23. 

  23.             int[] cipherSuites, IDictionary extensions, int bindersSize)
    24. 

  24.         {
    25. 

  25.             this.m_version = version;
    26. 

  26.             this.m_random = random;
    27. 

  27.             this.m_sessionID = sessionID;
    28. 

  28.             this.m_cookie = cookie;
    29. 

  29.             this.m_cipherSuites = cipherSuites;
    30. 

  30.             this.m_extensions = extensions;
    31. 

  31.             this.m_bindersSize = bindersSize;
    32. 

  32.         }
    33. 

  33. 

  34.         public int BindersSize
    35. 

  35.         {
    36. 

  36.             get { return m_bindersSize; }
    37. 

  37.         }
    38. 

  38. 

  39.         public int[] CipherSuites
    40. 

  40.         {
    41. 

  41.             get { return m_cipherSuites; }
    42. 

  42.         }
    43. 

  43. 

  44.         public byte[] Cookie
    45. 

  45.         {
    46. 

  46.             get { return m_cookie; }
    47. 

  47.         }
    48. 

  48. 

  49.         public IDictionary Extensions
    50. 

  50.         {
    51. 

  51.             get { return m_extensions; }
    52. 

  52.         }
    53. 

  53. 

  54.         public byte[] Random
    55. 

  55.         {
    56. 

  56.             get { return m_random; }
    57. 

  57.         }
    58. 

  58. 

  59.         public byte[] SessionID
    60. 

  60.         {
    61. 

  61.             get { return m_sessionID; }
    62. 

  62.         }
    63. 

  63. 

  64.         public ProtocolVersion Version
    65. 

  65.         {
    66. 

  66.             get { return m_version; }
    67. 

  67.         }
    68. 

  68. 

  69.         /// <summary>Encode this <see cref="ClientHello"/> to a <see cref="Stream"/>.</summary>
    70. 

  70.         /// <param name="context">the <see cref="TlsContext"/> of the current connection.</param>
    71. 

  71.         /// <param name="output">the <see cref="Stream"/> to encode to.</param>
    72. 

  72.         /// <exception cref="IOException"/>
    73. 

  73.         public void Encode(TlsContext context, Stream output)
    74. 

  74.         {
    75. 

  75.             if (m_bindersSize < 0)
    76. 

  76.                 throw new TlsFatalAlert(AlertDescription.internal_error);
    77. 

  77. 

  78.             TlsUtilities.WriteVersion(m_version, output);
    79. 

  79. 

  80.             output.Write(m_random, 0, m_random.Length);
    81. 

  81. 

  82.             TlsUtilities.WriteOpaque8(m_sessionID, output);
    83. 

  83. 

  84.             if (null != m_cookie)
    85. 

  85.             {
    86. 

  86.                 TlsUtilities.WriteOpaque8(m_cookie, output);
    87. 

  87.             }
    88. 

  88. 

  89.             TlsUtilities.WriteUint16ArrayWithUint16Length(m_cipherSuites, output);
    90. 

  90. 

  91.             TlsUtilities.WriteUint8ArrayWithUint8Length(new short[]{ CompressionMethod.cls_null }, output);
    92. 

  92. 

  93.             TlsProtocol.WriteExtensions(output, m_extensions, m_bindersSize);
    94. 

  94.         }
    95. 

  95. 

  96.         /// <summary>Parse a <see cref="ClientHello"/> from a <see cref="MemoryStream"/>.</summary>
    97. 

  97.         /// <param name="messageInput">the <see cref="MemoryStream"/> to parse from.</param>
    98. 

  98.         /// <param name="dtlsOutput">for DTLS this should be non-null; the input is copied to this
    99. 

  99.         /// <see cref="Stream"/>, minus the cookie field.</param>
    100. 

  100.         /// <returns>a <see cref="ClientHello"/> object.</returns>
    101. 

  101.         /// <exception cref="TlsFatalAlert"/>
    102. 

  102.         public static ClientHello Parse(MemoryStream messageInput, Stream dtlsOutput)
    103. 

  103.         {
    104. 

  104.             try
    105. 

  105.             {
    106. 

  106.                 return ImplParse(messageInput, dtlsOutput);
    107. 

  107.             }
    108. 

  108.             catch (TlsFatalAlert e)
    109. 

  109.             {
    110. 

  110.                 throw e;
    111. 

  111.             }
    112. 

  112.             catch (IOException e)
    113. 

  113.             {
    114. 

  114.                 throw new TlsFatalAlert(AlertDescription.decode_error, e);
    115. 

  115.             }
    116. 

  116.         }
    117. 

  117. 

  118.         /// <exception cref="IOException"/>
    119. 

  119.         private static ClientHello ImplParse(MemoryStream messageInput, Stream dtlsOutput)
    120. 

  120.         {
    121. 

  121.             Stream input = messageInput;
    122. 

  122.             if (null != dtlsOutput)
    123. 

  123.             {
    124. 

  124.                 input = new TeeInputStream(input, dtlsOutput);
    125. 

  125.             }
    126. 

  126. 

  127.             ProtocolVersion clientVersion = TlsUtilities.ReadVersion(input);
    128. 

  128. 

  129.             byte[] random = TlsUtilities.ReadFully(32, input);
    130. 

  130. 

  131.             byte[] sessionID = TlsUtilities.ReadOpaque8(input, 0, 32);
    132. 

  132. 

  133.             byte[] cookie = null;
    134. 

  134.             if (null != dtlsOutput)
    135. 

  135.             {
    136. 

  136.                 /*
    137. 

  137.                  * RFC 6347 This specification increases the cookie size limit to 255 bytes for greater
    138. 

  138.                  * future flexibility. The limit remains 32 for previous versions of DTLS.
    139. 

  139.                  */
    140. 

  140.                 int maxCookieLength = ProtocolVersion.DTLSv12.IsEqualOrEarlierVersionOf(clientVersion) ? 255 : 32;
    141. 

  141. 

  142.                 cookie = TlsUtilities.ReadOpaque8(messageInput, 0, maxCookieLength);
    143. 

  143.             }
    144. 

  144. 

  145.             int cipher_suites_length = TlsUtilities.ReadUint16(input);
    146. 

  146.             if (cipher_suites_length < 2 || (cipher_suites_length & 1) != 0
    147. 

  147.                 || (int)(messageInput.Length - messageInput.Position) < cipher_suites_length)
    148. 

  148.             {
    149. 

  149.                 throw new TlsFatalAlert(AlertDescription.decode_error);
    150. 

  150.             }
    151. 

  151. 

  152.             /*
    153. 

  153.              * NOTE: "If the session_id field is not empty (implying a session resumption request) this
    154. 

  154.              * vector must include at least the cipher_suite from that session."
    155. 

  155.              */
    156. 

  156.             int[] cipherSuites = TlsUtilities.ReadUint16Array(cipher_suites_length / 2, input);
    157. 

  157. 

  158.             short[] compressionMethods = TlsUtilities.ReadUint8ArrayWithUint8Length(input, 1);
    159. 

  159.             if (!Arrays.Contains(compressionMethods, CompressionMethod.cls_null))
    160. 

  160.                 throw new TlsFatalAlert(AlertDescription.handshake_failure);
    161. 

  161. 

  162.             /*
    163. 

  163.              * NOTE: Can't use TlsProtocol.ReadExtensions directly because TeeInputStream a) won't have
    164. 

  164.              * 'Length' or 'Position' properties in the FIPS provider, b) isn't a MemoryStream.
    165. 

  165.              */
    166. 

  166.             IDictionary extensions = null;
    167. 

  167.             if (messageInput.Position < messageInput.Length)
    168. 

  168.             {
    169. 

  169.                 byte[] extBytes = TlsUtilities.ReadOpaque16(input);
    170. 

  170. 

  171.                 TlsProtocol.AssertEmpty(messageInput);
    172. 

  172. 

  173.                 extensions = TlsProtocol.ReadExtensionsDataClientHello(extBytes);
    174. 

  174.             }
    175. 

  175. 

  176.             return new ClientHello(clientVersion, random, sessionID, cookie, cipherSuites, extensions, -1);
    177. 

  177.         }
    178. 

  178.     }
    179. 

  179. }
    180. 

  180. #pragma warning restore
    181. 

  181. #endif
    182.