首页 发现 帮助
登录
c
/
mono
镜像自地址 https://github.com/mono/mono.git
2
0
派生 0
文件 工单管理 0 Wiki
目录树: 98cf04084a
分支列表 标签列表
mono
/
mcs
/
class
/
System.ServiceModel
/
Mono.Security.Protocol.Tls.Handshake.Server
/
TlsClientHello.cs

TlsClientHello.cs 4.1 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151 
  1. // Transport Security Layer (TLS)
    2. 

  2. // Copyright (c) 2003-2004 Carlos Guzman Alvarez
    3. 

  3. // Copyright (C) 2006 Novell, Inc (http://www.novell.com)
    4. 

  4. //
    5. 

  5. // Permission is hereby granted, free of charge, to any person obtaining
    6. 

  6. // a copy of this software and associated documentation files (the
    7. 

  7. // "Software"), to deal in the Software without restriction, including
    8. 

  8. // without limitation the rights to use, copy, modify, merge, publish,
    9. 

  9. // distribute, sublicense, and/or sell copies of the Software, and to
    10. 

  10. // permit persons to whom the Software is furnished to do so, subject to
    11. 

  11. // the following conditions:
    12. 

  12. // 
    13. 

  13. // The above copyright notice and this permission notice shall be
    14. 

  14. // included in all copies or substantial portions of the Software.
    15. 

  15. // 
    16. 

  16. // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
    17. 

  17. // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
    18. 

  18. // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
    19. 

  19. // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
    20. 

  20. // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
    21. 

  21. // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
    22. 

  22. // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
    23. 

  23. //
    24. 

  24. 

  25. using System;
    26. 

  26. using System.Security.Cryptography;
    27. 

  27. 

  28. namespace Mono.Security.Protocol.Tls.Handshake.Server
    29. 

  29. {
    30. 

  30. 	internal class TlsClientHello : HandshakeMessage
    31. 

  31. 	{
    32. 

  32. 		#region Private Fields
    33. 

  33. 

  34. 		private byte[]	random;
    35. 

  35. 		private byte[]	sessionId;
    36. 

  36. 		private short[]	cipherSuites;
    37. 

  37. 		private byte[]	compressionMethods;
    38. 

  38. 

  39. 		#endregion
    40. 

  40. 

  41. 		#region Constructors
    42. 

  42. 

  43. 		public TlsClientHello(Context context, byte[] buffer)
    44. 

  44. 			: base(context, HandshakeType.ClientHello, buffer)
    45. 

  45. 		{
    46. 

  46. 		}
    47. 

  47. 

  48. 		#endregion
    49. 

  49. 

  50. 		#region Methods
    51. 

  51. 

  52. 		public override void Update()
    53. 

  53. 		{
    54. 

  54. 			base.Update();
    55. 

  55. 

  56. 			this.selectCipherSuite();
    57. 

  57. 			this.selectCompressionMethod();
    58. 

  58. 

  59. 			this.Context.SessionId			= this.sessionId;
    60. 

  60. 			this.Context.ClientRandom		= this.random;
    61. 

  61. 			this.Context.ProtocolNegotiated	= true;
    62. 

  62. 		}
    63. 

  63. 

  64. 		#endregion
    65. 

  65. 

  66. 		#region Protected Methods
    67. 

  67. 

  68. 		protected override void ProcessAsSsl3()
    69. 

  69. 		{
    70. 

  70. 			this.ProcessAsTls1();
    71. 

  71. 		}
    72. 

  72. 

  73. 		protected override void ProcessAsTls1()
    74. 

  74. 		{
    75. 

  75. 			// Client Version
    76. 

  76. 			this.processProtocol(this.ReadInt16());
    77. 

  77. 								
    78. 

  78. 			// Random bytes - Unix time + Radom bytes [28]
    79. 

  79. 			this.random = this.ReadBytes(32);
    80. 

  80. 			
    81. 

  81. 			// Session id
    82. 

  82. 			// Send the session ID empty
    83. 

  83. 			this.sessionId = this.ReadBytes(this.ReadByte());
    84. 

  84. 			
    85. 

  85. 			// Read Supported Cipher Suites count
    86. 

  86. 			this.cipherSuites = new short[this.ReadInt16()/2];
    87. 

  87. 

  88. 			// Read Cipher Suites
    89. 

  89. 			for (int i = 0; i < this.cipherSuites.Length; i++)
    90. 

  90. 			{
    91. 

  91. 				this.cipherSuites[i] = this.ReadInt16();
    92. 

  92. 			}
    93. 

  93. 

  94. 			// Compression methods length
    95. 

  95. 			this.compressionMethods = new byte[this.ReadByte()];
    96. 

  96. 			
    97. 

  97. 			for (int i = 0; i < this.compressionMethods.Length; i++)
    98. 

  98. 			{
    99. 

  99. 				this.compressionMethods[i] = this.ReadByte();
    100. 

  100. 			}
    101. 

  101. 		}
    102. 

  102. 

  103. 		#endregion
    104. 

  104. 

  105. 		#region Private Methods
    106. 

  106. 

  107. 		private void processProtocol(short protocol)
    108. 

  108. 		{
    109. 

  109. 			SecurityProtocolType clientProtocol = this.Context.DecodeProtocolCode(protocol);
    110. 

  110. 

  111. 			if ((clientProtocol & this.Context.SecurityProtocolFlags) == clientProtocol ||
    112. 

  112. 				(this.Context.SecurityProtocolFlags & SecurityProtocolType.Default) == SecurityProtocolType.Default)
    113. 

  113. 			{
    114. 

  114. 				this.Context.SecurityProtocol = clientProtocol;
    115. 

  115. 				this.Context.SupportedCiphers.Clear();
    116. 

  116. 				this.Context.SupportedCiphers = null;
    117. 

  117. 				this.Context.SupportedCiphers = CipherSuiteFactory.GetSupportedCiphers(clientProtocol);
    118. 

  118. 			}
    119. 

  119. 			else
    120. 

  120. 			{
    121. 

  121. 				throw new TlsException(AlertDescription.ProtocolVersion, "Incorrect protocol version received from server");
    122. 

  122. 			}
    123. 

  123. 		}
    124. 

  124. 

  125. 		private void selectCipherSuite()
    126. 

  126. 		{
    127. 

  127. 			int index = 0;
    128. 

  128. 

  129. 			for (int i = 0; i < this.cipherSuites.Length; i++)
    130. 

  130. 			{
    131. 

  131. 				if ((index = this.Context.SupportedCiphers.IndexOf(this.cipherSuites[i])) != -1)	
    132. 

  132. 				{
    133. 

  133. 					this.Context.Negotiating.Cipher = this.Context.SupportedCiphers[index];
    134. 

  134. 					break;
    135. 

  135. 				}
    136. 

  136. 			}
    137. 

  137. 

  138. 			if (this.Context.Negotiating.Cipher == null)
    139. 

  139. 			{
    140. 

  140. 				throw new TlsException(AlertDescription.InsuficientSecurity, "Insuficient Security");
    141. 

  141. 			}
    142. 

  142. 		}
    143. 

  143. 

  144. 		private void selectCompressionMethod()
    145. 

  145. 		{
    146. 

  146. 			this.Context.CompressionMethod = SecurityCompressionType.None;
    147. 

  147. 		}
    148. 

  148. 

  149. 		#endregion
    150. 

  150. 	}
    151. 

  151. }
    152.