Home Explore Help
Register Sign In
wartheking
/
WaterFlush
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 26b9e86ba4
Branches Tags
WaterFlush
/
Packages
/
com.tivadar.best.http
/
Runtime
/
3rdParty
/
BouncyCastle
/
bcpg
/
SignaturePacket.cs

SignaturePacket.cs 14 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466 
  1. #if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
    2. 

  2. #pragma warning disable
    3. 

  3. using System;
    4. 

  4. using System.Collections.Generic;
    5. 

  5. using System.IO;
    6. 

  6. 

  7. using Best.HTTP.SecureProtocol.Org.BouncyCastle.Bcpg.Sig;
    8. 

  8. using Best.HTTP.SecureProtocol.Org.BouncyCastle.Utilities.Date;
    9. 

  9. using Best.HTTP.SecureProtocol.Org.BouncyCastle.Utilities.IO;
    10. 

  10. 

  11. namespace Best.HTTP.SecureProtocol.Org.BouncyCastle.Bcpg
    12. 

  12. {
    13. 

  13. 	/// <remarks>Generic signature packet.</remarks>
    14. 

  14.     public class SignaturePacket
    15. 

  15.         : ContainedPacket
    16. 

  16.     {
    17. 

  17. 		private int						version;
    18. 

  18.         private int						signatureType;
    19. 

  19.         private long					creationTime;
    20. 

  20.         private long					keyId;
    21. 

  21.         private PublicKeyAlgorithmTag	keyAlgorithm;
    22. 

  22.         private HashAlgorithmTag		hashAlgorithm;
    23. 

  23.         private MPInteger[]				signature;
    24. 

  24.         private byte[]					fingerprint;
    25. 

  25.         private SignatureSubpacket[]	hashedData;
    26. 

  26.         private SignatureSubpacket[]	unhashedData;
    27. 

  27. 		private byte[]					signatureEncoding;
    28. 

  28. 

  29. 		internal SignaturePacket(
    30. 

  30.             BcpgInputStream bcpgIn)
    31. 

  31.         {
    32. 

  32.             version = bcpgIn.ReadByte();
    33. 

  33. 

  34. 			if (version == 3 || version == 2)
    35. 

  35.             {
    36. 

  36. //                int l =
    37. 

  37.                 bcpgIn.ReadByte();
    38. 

  38. 

  39. 				signatureType = bcpgIn.ReadByte();
    40. 

  40.                 creationTime = (((long)bcpgIn.ReadByte() << 24) | ((long)bcpgIn.ReadByte() << 16)
    41. 

  41.                     | ((long)bcpgIn.ReadByte() << 8) | (uint)bcpgIn.ReadByte()) * 1000L;
    42. 

  42. 

  43. 				keyId |= (long)bcpgIn.ReadByte() << 56;
    44. 

  44.                 keyId |= (long)bcpgIn.ReadByte() << 48;
    45. 

  45.                 keyId |= (long)bcpgIn.ReadByte() << 40;
    46. 

  46.                 keyId |= (long)bcpgIn.ReadByte() << 32;
    47. 

  47.                 keyId |= (long)bcpgIn.ReadByte() << 24;
    48. 

  48.                 keyId |= (long)bcpgIn.ReadByte() << 16;
    49. 

  49.                 keyId |= (long)bcpgIn.ReadByte() << 8;
    50. 

  50.                 keyId |= (uint)bcpgIn.ReadByte();
    51. 

  51. 

  52. 				keyAlgorithm = (PublicKeyAlgorithmTag) bcpgIn.ReadByte();
    53. 

  53.                 hashAlgorithm = (HashAlgorithmTag) bcpgIn.ReadByte();
    54. 

  54.             }
    55. 

  55.             else if (version == 4)
    56. 

  56.             {
    57. 

  57.                 signatureType = bcpgIn.ReadByte();
    58. 

  58.                 keyAlgorithm = (PublicKeyAlgorithmTag) bcpgIn.ReadByte();
    59. 

  59.                 hashAlgorithm = (HashAlgorithmTag) bcpgIn.ReadByte();
    60. 

  60. 

  61. 				int hashedLength = (bcpgIn.ReadByte() << 8) | bcpgIn.ReadByte();
    62. 

  62.                 byte[] hashed = new byte[hashedLength];
    63. 

  63. 

  64. 				bcpgIn.ReadFully(hashed);
    65. 

  65. 

  66. 				//
    67. 

  67.                 // read the signature sub packet data.
    68. 

  68.                 //
    69. 

  69.                 SignatureSubpacketsParser sIn = new SignatureSubpacketsParser(
    70. 

  70.                     new MemoryStream(hashed, false));
    71. 

  71. 

  72.                 var v = new List<SignatureSubpacket>();
    73. 

  73. 

  74. 				SignatureSubpacket sub;
    75. 

  75. 				while ((sub = sIn.ReadPacket()) != null)
    76. 

  76.                 {
    77. 

  77.                     v.Add(sub);
    78. 

  78.                 }
    79. 

  79. 

  80.                 hashedData = v.ToArray();
    81. 

  81. 

  82. 				foreach (var p in hashedData)
    83. 

  83.                 {
    84. 

  84.                     if (p is IssuerKeyId issuerKeyId)
    85. 

  85.                     {
    86. 

  86.                         keyId = issuerKeyId.KeyId;
    87. 

  87.                     }
    88. 

  88.                     else if (p is SignatureCreationTime sigCreationTime)
    89. 

  89.                     {
    90. 

  90.                         creationTime = DateTimeUtilities.DateTimeToUnixMs(sigCreationTime.GetTime());
    91. 

  91.                     }
    92. 

  92.                 }
    93. 

  93. 

  94. 				int unhashedLength = (bcpgIn.ReadByte() << 8) | bcpgIn.ReadByte();
    95. 

  95.                 byte[] unhashed = new byte[unhashedLength];
    96. 

  96. 

  97. 				bcpgIn.ReadFully(unhashed);
    98. 

  98. 

  99. 				sIn = new SignatureSubpacketsParser(new MemoryStream(unhashed, false));
    100. 

  100. 

  101. 				v.Clear();
    102. 

  102. 

  103. 				while ((sub = sIn.ReadPacket()) != null)
    104. 

  104.                 {
    105. 

  105.                     v.Add(sub);
    106. 

  106.                 }
    107. 

  107. 

  108.                 unhashedData = v.ToArray();
    109. 

  109. 

  110. 				foreach (var p in unhashedData)
    111. 

  111.                 {
    112. 

  112.                     if (p is IssuerKeyId issuerKeyId)
    113. 

  113.                     {
    114. 

  114.                         keyId = issuerKeyId.KeyId;
    115. 

  115.                     }
    116. 

  116.                 }
    117. 

  117.             }
    118. 

  118.             else
    119. 

  119.             {
    120. 

  120.                 Streams.Drain(bcpgIn);
    121. 

  121. 

  122.                 throw new UnsupportedPacketVersionException("unsupported version: " + version);
    123. 

  123.             }
    124. 

  124. 

  125. 			fingerprint = new byte[2];
    126. 

  126.             bcpgIn.ReadFully(fingerprint);
    127. 

  127. 

  128. 			switch (keyAlgorithm)
    129. 

  129.             {
    130. 

  130.                 case PublicKeyAlgorithmTag.RsaGeneral:
    131. 

  131.                 case PublicKeyAlgorithmTag.RsaSign:
    132. 

  132.                     MPInteger v = new MPInteger(bcpgIn);
    133. 

  133. 					signature = new MPInteger[1]{ v };
    134. 

  134.                     break;
    135. 

  135. 				case PublicKeyAlgorithmTag.Dsa:
    136. 

  136.                     MPInteger r = new MPInteger(bcpgIn);
    137. 

  137.                     MPInteger s = new MPInteger(bcpgIn);
    138. 

  138. 					signature = new MPInteger[2]{ r, s };
    139. 

  139.                     break;
    140. 

  140.                 case PublicKeyAlgorithmTag.ElGamalEncrypt: // yep, this really does happen sometimes.
    141. 

  141.                 case PublicKeyAlgorithmTag.ElGamalGeneral:
    142. 

  142.                     MPInteger p = new MPInteger(bcpgIn);
    143. 

  143.                     MPInteger g = new MPInteger(bcpgIn);
    144. 

  144.                     MPInteger y = new MPInteger(bcpgIn);
    145. 

  145. 					signature = new MPInteger[3]{ p, g, y };
    146. 

  146.                     break;
    147. 

  147.                 case PublicKeyAlgorithmTag.ECDsa:
    148. 

  148.                 case PublicKeyAlgorithmTag.EdDsa:
    149. 

  149.                     MPInteger ecR = new MPInteger(bcpgIn);
    150. 

  150.                     MPInteger ecS = new MPInteger(bcpgIn);
    151. 

  151.                     signature = new MPInteger[2]{ ecR, ecS };
    152. 

  152.                     break;
    153. 

  153.                 default:
    154. 

  154. 					if (keyAlgorithm < PublicKeyAlgorithmTag.Experimental_1 || keyAlgorithm > PublicKeyAlgorithmTag.Experimental_11)
    155. 

  155.                         throw new IOException("unknown signature key algorithm: " + keyAlgorithm);
    156. 

  156. 

  157.                     signature = null;
    158. 

  158. 					MemoryStream bOut = new MemoryStream();
    159. 

  159. 					int ch;
    160. 

  160. 					while ((ch = bcpgIn.ReadByte()) >= 0)
    161. 

  161. 					{
    162. 

  162. 						bOut.WriteByte((byte) ch);
    163. 

  163. 					}
    164. 

  164. 					signatureEncoding = bOut.ToArray();
    165. 

  165. 					break;
    166. 

  166.             }
    167. 

  167.         }
    168. 

  168. 

  169. 		/**
    170. 

  170.         * Generate a version 4 signature packet.
    171. 

  171.         *
    172. 

  172.         * @param signatureType
    173. 

  173.         * @param keyAlgorithm
    174. 

  174.         * @param hashAlgorithm
    175. 

  175.         * @param hashedData
    176. 

  176.         * @param unhashedData
    177. 

  177.         * @param fingerprint
    178. 

  178.         * @param signature
    179. 

  179.         */
    180. 

  180.         public SignaturePacket(
    181. 

  181.             int						signatureType,
    182. 

  182.             long					keyId,
    183. 

  183.             PublicKeyAlgorithmTag	keyAlgorithm,
    184. 

  184.             HashAlgorithmTag		hashAlgorithm,
    185. 

  185.             SignatureSubpacket[]	hashedData,
    186. 

  186.             SignatureSubpacket[]	unhashedData,
    187. 

  187.             byte[]					fingerprint,
    188. 

  188.             MPInteger[]				signature)
    189. 

  189.             : this(4, signatureType, keyId, keyAlgorithm, hashAlgorithm, hashedData, unhashedData, fingerprint, signature)
    190. 

  190.         {
    191. 

  191.         }
    192. 

  192. 

  193. 		/**
    194. 

  194.         * Generate a version 2/3 signature packet.
    195. 

  195.         *
    196. 

  196.         * @param signatureType
    197. 

  197.         * @param keyAlgorithm
    198. 

  198.         * @param hashAlgorithm
    199. 

  199.         * @param fingerprint
    200. 

  200.         * @param signature
    201. 

  201.         */
    202. 

  202.         public SignaturePacket(
    203. 

  203.             int						version,
    204. 

  204.             int						signatureType,
    205. 

  205.             long					keyId,
    206. 

  206.             PublicKeyAlgorithmTag	keyAlgorithm,
    207. 

  207.             HashAlgorithmTag		hashAlgorithm,
    208. 

  208.             long					creationTime,
    209. 

  209.             byte[]					fingerprint,
    210. 

  210.             MPInteger[]				signature)
    211. 

  211.             : this(version, signatureType, keyId, keyAlgorithm, hashAlgorithm, null, null, fingerprint, signature)
    212. 

  212.         {
    213. 

  213. 			this.creationTime = creationTime;
    214. 

  214.         }
    215. 

  215. 

  216. 		public SignaturePacket(
    217. 

  217.             int						version,
    218. 

  218.             int						signatureType,
    219. 

  219.             long					keyId,
    220. 

  220.             PublicKeyAlgorithmTag	keyAlgorithm,
    221. 

  221.             HashAlgorithmTag		hashAlgorithm,
    222. 

  222.             SignatureSubpacket[]	hashedData,
    223. 

  223.             SignatureSubpacket[]	unhashedData,
    224. 

  224.             byte[]					fingerprint,
    225. 

  225.             MPInteger[]				signature)
    226. 

  226.         {
    227. 

  227.             this.version = version;
    228. 

  228.             this.signatureType = signatureType;
    229. 

  229.             this.keyId = keyId;
    230. 

  230.             this.keyAlgorithm = keyAlgorithm;
    231. 

  231.             this.hashAlgorithm = hashAlgorithm;
    232. 

  232.             this.hashedData = hashedData;
    233. 

  233.             this.unhashedData = unhashedData;
    234. 

  234.             this.fingerprint = fingerprint;
    235. 

  235.             this.signature = signature;
    236. 

  236. 

  237. 			if (hashedData != null)
    238. 

  238. 			{
    239. 

  239. 				SetCreationTime();
    240. 

  240. 			}
    241. 

  241. 		}
    242. 

  242. 

  243. 		public int Version
    244. 

  244.         {
    245. 

  245. 			get { return version; }
    246. 

  246.         }
    247. 

  247. 

  248. 		public int SignatureType
    249. 

  249.         {
    250. 

  250. 			get { return signatureType; }
    251. 

  251. 		}
    252. 

  252. 

  253. 		/**
    254. 

  254.         * return the keyId
    255. 

  255.         * @return the keyId that created the signature.
    256. 

  256.         */
    257. 

  257.         public long KeyId
    258. 

  258.         {
    259. 

  259.             get { return keyId; }
    260. 

  260.         }
    261. 

  261. 

  262. 		/**
    263. 

  263.         * return the signature trailer that must be included with the data
    264. 

  264.         * to reconstruct the signature
    265. 

  265.         *
    266. 

  266.         * @return byte[]
    267. 

  267.         */
    268. 

  268.         public byte[] GetSignatureTrailer()
    269. 

  269.         {
    270. 

  270. 			if (version == 3)
    271. 

  271.             {
    272. 

  272.                 long time = creationTime / 1000L;
    273. 

  273. 

  274.                 byte[] trailer = new byte[5];
    275. 

  275. 				trailer[0] = (byte)signatureType;
    276. 

  276.                 trailer[1] = (byte)(time >> 24);
    277. 

  277.                 trailer[2] = (byte)(time >> 16);
    278. 

  278.                 trailer[3] = (byte)(time >>  8);
    279. 

  279.                 trailer[4] = (byte)(time      );
    280. 

  280.                 return trailer;
    281. 

  281.             }
    282. 

  282. 

  283.             MemoryStream sOut = new MemoryStream();
    284. 

  284. 

  285. 			sOut.WriteByte((byte)Version);
    286. 

  286.             sOut.WriteByte((byte)SignatureType);
    287. 

  287.             sOut.WriteByte((byte)KeyAlgorithm);
    288. 

  288.             sOut.WriteByte((byte)HashAlgorithm);
    289. 

  289. 

  290.             // Mark position an reserve two bytes for length
    291. 

  291.             long lengthPosition = sOut.Position;
    292. 

  292.             sOut.WriteByte(0x00);
    293. 

  293.             sOut.WriteByte(0x00);
    294. 

  294. 

  295.             SignatureSubpacket[] hashed = GetHashedSubPackets();
    296. 

  296. 			for (int i = 0; i != hashed.Length; i++)
    297. 

  297.             {
    298. 

  298.                 hashed[i].Encode(sOut);
    299. 

  299.             }
    300. 

  300. 

  301.             ushort dataLength = Convert.ToUInt16(sOut.Position - lengthPosition - 2);
    302. 

  302.             uint hDataLength = Convert.ToUInt32(sOut.Position);
    303. 

  303. 

  304. 			sOut.WriteByte((byte)Version);
    305. 

  305.             sOut.WriteByte(0xff);
    306. 

  306.             sOut.WriteByte((byte)(hDataLength >> 24));
    307. 

  307.             sOut.WriteByte((byte)(hDataLength >> 16));
    308. 

  308.             sOut.WriteByte((byte)(hDataLength >>  8));
    309. 

  309.             sOut.WriteByte((byte)(hDataLength      ));
    310. 

  310. 

  311.             // Reset position and fill in length
    312. 

  312.             sOut.Position = lengthPosition;
    313. 

  313.             sOut.WriteByte((byte)(dataLength >> 8));
    314. 

  314.             sOut.WriteByte((byte)(dataLength     ));
    315. 

  315. 

  316.             return sOut.ToArray();
    317. 

  317.         }
    318. 

  318. 

  319. 		public PublicKeyAlgorithmTag KeyAlgorithm
    320. 

  320.         {
    321. 

  321. 			get { return keyAlgorithm; }
    322. 

  322.         }
    323. 

  323. 

  324. 		public HashAlgorithmTag HashAlgorithm
    325. 

  325. 		{
    326. 

  326. 			get { return hashAlgorithm; }
    327. 

  327.         }
    328. 

  328. 

  329. 		/**
    330. 

  330. 		* return the signature as a set of integers - note this is normalised to be the
    331. 

  331.         * ASN.1 encoding of what appears in the signature packet.
    332. 

  332.         */
    333. 

  333.         public MPInteger[] GetSignature()
    334. 

  334.         {
    335. 

  335.             return signature;
    336. 

  336.         }
    337. 

  337. 

  338. 		/**
    339. 

  339. 		 * Return the byte encoding of the signature section.
    340. 

  340. 		 * @return uninterpreted signature bytes.
    341. 

  341. 		 */
    342. 

  342. 		public byte[] GetSignatureBytes()
    343. 

  343. 		{
    344. 

  344. 			if (signatureEncoding != null)
    345. 

  345. 			{
    346. 

  346. 				return (byte[]) signatureEncoding.Clone();
    347. 

  347. 			}
    348. 

  348. 

  349. 			MemoryStream bOut = new MemoryStream();
    350. 

  350. 			BcpgOutputStream bcOut = new BcpgOutputStream(bOut);
    351. 

  351. 

  352. 			foreach (MPInteger sigObj in signature)
    353. 

  353. 			{
    354. 

  354. 				try
    355. 

  355. 				{
    356. 

  356. 					bcOut.WriteObject(sigObj);
    357. 

  357. 				}
    358. 

  358. 				catch (IOException e)
    359. 

  359. 				{
    360. 

  360. 					throw new Exception("internal error: " + e);
    361. 

  361. 				}
    362. 

  362. 			}
    363. 

  363. 

  364. 			return bOut.ToArray();
    365. 

  365. 		}
    366. 

  366. 

  367. 		public SignatureSubpacket[] GetHashedSubPackets()
    368. 

  368.         {
    369. 

  369.             return hashedData;
    370. 

  370.         }
    371. 

  371. 

  372. 		public SignatureSubpacket[] GetUnhashedSubPackets()
    373. 

  373.         {
    374. 

  374.             return unhashedData;
    375. 

  375.         }
    376. 

  376. 

  377. 		/// <summary>Return the creation time in milliseconds since 1 Jan., 1970 UTC.</summary>
    378. 

  378.         public long CreationTime
    379. 

  379.         {
    380. 

  380.             get { return creationTime; }
    381. 

  381.         }
    382. 

  382. 

  383. 		public override void Encode(BcpgOutputStream bcpgOut)
    384. 

  384.         {
    385. 

  385.             MemoryStream bOut = new MemoryStream();
    386. 

  386.             using (var pOut = new BcpgOutputStream(bOut))
    387. 

  387.             {
    388. 

  388.                 pOut.WriteByte((byte)version);
    389. 

  389. 

  390.                 if (version == 3 || version == 2)
    391. 

  391.                 {
    392. 

  392.                     byte nextBlockLength = 5;
    393. 

  393.                     pOut.Write(nextBlockLength, (byte)signatureType);
    394. 

  394.                     pOut.WriteInt((int)(creationTime / 1000L));
    395. 

  395.                     pOut.WriteLong(keyId);
    396. 

  396.                     pOut.Write((byte)keyAlgorithm, (byte)hashAlgorithm);
    397. 

  397.                 }
    398. 

  398.                 else if (version == 4)
    399. 

  399.                 {
    400. 

  400.                     pOut.Write((byte)signatureType, (byte)keyAlgorithm, (byte)hashAlgorithm);
    401. 

  401.                     EncodeLengthAndData(pOut, GetEncodedSubpackets(hashedData));
    402. 

  402.                     EncodeLengthAndData(pOut, GetEncodedSubpackets(unhashedData));
    403. 

  403.                 }
    404. 

  404.                 else
    405. 

  405.                 {
    406. 

  406.                     throw new IOException("unknown version: " + version);
    407. 

  407.                 }
    408. 

  408. 

  409.                 pOut.Write(fingerprint);
    410. 

  410. 

  411.                 if (signature != null)
    412. 

  412.                 {
    413. 

  413.                     pOut.WriteObjects(signature);
    414. 

  414.                 }
    415. 

  415.                 else
    416. 

  416.                 {
    417. 

  417.                     pOut.Write(signatureEncoding);
    418. 

  418.                 }
    419. 

  419.             }
    420. 

  420. 

  421. 			bcpgOut.WritePacket(PacketTag.Signature, bOut.ToArray(), true);
    422. 

  422.         }
    423. 

  423. 

  424. 		private static void EncodeLengthAndData(
    425. 

  425. 			BcpgOutputStream	pOut,
    426. 

  426. 			byte[]				data)
    427. 

  427. 		{
    428. 

  428. 			pOut.WriteShort((short) data.Length);
    429. 

  429. 			pOut.Write(data);
    430. 

  430. 		}
    431. 

  431. 

  432. 		private static byte[] GetEncodedSubpackets(
    433. 

  433. 			SignatureSubpacket[] ps)
    434. 

  434. 		{
    435. 

  435. 			MemoryStream sOut = new MemoryStream();
    436. 

  436. 

  437. 			foreach (SignatureSubpacket p in ps)
    438. 

  438. 			{
    439. 

  439. 				p.Encode(sOut);
    440. 

  440. 			}
    441. 

  441. 

  442. 			return sOut.ToArray();
    443. 

  443. 		}
    444. 

  444. 

  445. 		private void SetCreationTime()
    446. 

  446. 		{
    447. 

  447. 			foreach (SignatureSubpacket p in hashedData)
    448. 

  448. 			{
    449. 

  449. 				if (p is SignatureCreationTime signatureCreationTime)
    450. 

  450. 				{
    451. 

  451.                     creationTime = DateTimeUtilities.DateTimeToUnixMs(signatureCreationTime.GetTime());
    452. 

  452. 					break;
    453. 

  453. 				}
    454. 

  454. 			}
    455. 

  455. 		}
    456. 

  456. 

  457.         public static SignaturePacket FromByteArray(byte[] data)
    458. 

  458.         {
    459. 

  459.             BcpgInputStream input = BcpgInputStream.Wrap(new MemoryStream(data));
    460. 

  460. 

  461.             return new SignaturePacket(input);
    462. 

  462.         }
    463. 

  463.     }
    464. 

  464. }
    465. 

  465. #pragma warning restore
    466. 

  466. #endif
    467.