Merge pull request #538 from RUB-NDS/high-precision-timing

High precision timing

Author: ic0ns

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/Main.java

@@ -9,32 +9,9 @@
 package de.rub.nds.tlsattacker.attacks;
 
 import com.beust.jcommander.JCommander;
-import de.rub.nds.tlsattacker.attacks.config.BleichenbacherCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.Cve20162107CommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.DrownCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.EarlyCCSCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.HeartbleedCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.InvalidCurveAttackConfig;
-import de.rub.nds.tlsattacker.attacks.config.PaddingOracleCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.PoodleCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.PskBruteForcerAttackClientCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.PskBruteForcerAttackServerCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.SimpleMitmProxyCommandConfig;
-import de.rub.nds.tlsattacker.attacks.config.TLSPoodleCommandConfig;
+import de.rub.nds.tlsattacker.attacks.config.*;
 import de.rub.nds.tlsattacker.attacks.config.delegate.GeneralAttackDelegate;
-import de.rub.nds.tlsattacker.attacks.impl.Attacker;
-import de.rub.nds.tlsattacker.attacks.impl.BleichenbacherAttacker;
-import de.rub.nds.tlsattacker.attacks.impl.Cve20162107Attacker;
-import de.rub.nds.tlsattacker.attacks.impl.DrownAttacker;
-import de.rub.nds.tlsattacker.attacks.impl.EarlyCCSAttacker;
-import de.rub.nds.tlsattacker.attacks.impl.HeartbleedAttacker;
-import de.rub.nds.tlsattacker.attacks.impl.InvalidCurveAttacker;
-import de.rub.nds.tlsattacker.attacks.impl.PaddingOracleAttacker;
-import de.rub.nds.tlsattacker.attacks.impl.PoodleAttacker;
-import de.rub.nds.tlsattacker.attacks.impl.PskBruteForcerAttackClient;
-import de.rub.nds.tlsattacker.attacks.impl.PskBruteForcerAttackServer;
-import de.rub.nds.tlsattacker.attacks.impl.SimpleMitmProxy;
-import de.rub.nds.tlsattacker.attacks.impl.TLSPoodleAttacker;
+import de.rub.nds.tlsattacker.attacks.impl.*;
 import de.rub.nds.tlsattacker.core.config.TLSDelegateConfig;
 import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
 import de.rub.nds.tlsattacker.core.exceptions.ConfigurationException;
@@ -70,6 +47,10 @@ public static void main(String[] args) {
         jc.addCommand(InvalidCurveAttackConfig.ATTACK_COMMAND, ellipticTest);
         HeartbleedCommandConfig heartbleed = new HeartbleedCommandConfig(generalDelegate);
         jc.addCommand(HeartbleedCommandConfig.ATTACK_COMMAND, heartbleed);
+
+        Lucky13CommandConfig lucky13 = new Lucky13CommandConfig(generalDelegate);
+        jc.addCommand(Lucky13CommandConfig.ATTACK_COMMAND, lucky13);
+
         PaddingOracleCommandConfig paddingOracle = new PaddingOracleCommandConfig(generalDelegate);
         jc.addCommand(PaddingOracleCommandConfig.ATTACK_COMMAND, paddingOracle);
         TLSPoodleCommandConfig tlsPoodle = new TLSPoodleCommandConfig(generalDelegate);
@@ -104,6 +85,9 @@ public static void main(String[] args) {
             case HeartbleedCommandConfig.ATTACK_COMMAND:
                 attacker = new HeartbleedAttacker(heartbleed, heartbleed.createConfig());
                 break;
+            case Lucky13CommandConfig.ATTACK_COMMAND:
+                attacker = new Lucky13Attacker(lucky13, lucky13.createConfig());
+                break;
             case TLSPoodleCommandConfig.ATTACK_COMMAND:
                 attacker = new TLSPoodleAttacker(tlsPoodle, tlsPoodle.createConfig());
                 break;

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/config/Lucky13CommandConfig.java

@@ -0,0 +1,146 @@
+/**
+ * TLS-Attacker - A Modular Penetration Testing Framework for TLS
+ *
+ * Copyright 2014-2017 Ruhr University Bochum / Hackmanit GmbH
+ *
+ * Licensed under Apache License 2.0
+ * http://www.apache.org/licenses/LICENSE-2.0
+ */
+package de.rub.nds.tlsattacker.attacks.config;
+
+import com.beust.jcommander.Parameter;
+import com.beust.jcommander.ParametersDelegate;
+import de.rub.nds.tlsattacker.attacks.config.delegate.ProxyDelegate;
+import de.rub.nds.tlsattacker.core.config.Config;
+import de.rub.nds.tlsattacker.core.config.delegate.*;
+
+import java.util.LinkedList;
+import java.util.List;
+
+import de.rub.nds.tlsattacker.core.constants.CipherSuite;
+
+/**
+ *
+ */
+public class Lucky13CommandConfig extends AttackConfig {
+
+    public static final String ATTACK_COMMAND = "lucky13";
+
+    @Parameter(names = "-measurements", description = "Number of timing measurement iterations")
+    private Integer measurements = 100;
+
+    @Parameter(names = "-mona_file", description = "File output for Mona timing lib. If set, the output is generated and written.")
+    private String monaFile;
+
+    @Parameter(names = "-mona_jar", description = "Location of the ReportingTool.jar file.")
+    private String monaJar = "ReportingTool.jar";
+
+    @Parameter(names = "-paddings", description = "Paddings to check for differences, column separated.")
+    private String paddings = "0,255";
+
+    @Parameter(names = "-blocks", description = "Number of blocks to encrypt (default is set to the value from the Lucky 13 paper, Section 3)")
+    private Integer blocks = 18;
+
+    @ParametersDelegate
+    private ClientDelegate clientDelegate;
+    @ParametersDelegate
+    private HostnameExtensionDelegate hostnameExtensionDelegate;
+    @ParametersDelegate
+    private CiphersuiteDelegate ciphersuiteDelegate;
+    @ParametersDelegate
+    private ProtocolVersionDelegate protocolVersionDelegate;
+    @ParametersDelegate
+    private StarttlsDelegate starttlsDelegate;
+    @ParametersDelegate
+    private ProxyDelegate proxyDelegate;
+
+    /**
+     *
+     * @param delegate
+     */
+    public Lucky13CommandConfig(GeneralDelegate delegate) {
+        super(delegate);
+        clientDelegate = new ClientDelegate();
+        hostnameExtensionDelegate = new HostnameExtensionDelegate();
+        ciphersuiteDelegate = new CiphersuiteDelegate();
+        protocolVersionDelegate = new ProtocolVersionDelegate();
+        starttlsDelegate = new StarttlsDelegate();
+        addDelegate(clientDelegate);
+        addDelegate(hostnameExtensionDelegate);
+        addDelegate(ciphersuiteDelegate);
+        addDelegate(protocolVersionDelegate);
+        addDelegate(starttlsDelegate);
+        addDelegate(proxyDelegate);
+    }
+
+    public Integer getMeasurements() {
+        return measurements;
+    }
+
+    public void setMeasurements(Integer measurements) {
+        this.measurements = measurements;
+    }
+
+    public String getMonaFile() {
+        return monaFile;
+    }
+
+    public void setMonaFile(String monaFile) {
+        this.monaFile = monaFile;
+    }
+
+    public String getMonaJar() {
+        return monaJar;
+    }
+
+    public void setMonaJar(String monaJar) {
+        this.monaJar = monaJar;
+    }
+
+    public String getPaddings() {
+        return paddings;
+    }
+
+    public void setPaddings(String paddings) {
+        this.paddings = paddings;
+    }
+
+    public Integer getBlocks() {
+        return blocks;
+    }
+
+    public void setBlocks(Integer blocks) {
+        this.blocks = blocks;
+    }
+
+    /**
+     *
+     * @return
+     */
+    @Override
+    public boolean isExecuteAttack() {
+        return false;
+    }
+
+    /**
+     *
+     * @return
+     */
+    @Override
+    public Config createConfig() {
+        Config config = super.createConfig();
+        if (ciphersuiteDelegate.getCipherSuites() == null) {
+            /*
+             * No explicit cipher suites are set. Use the default cipher suites
+             * for this attack
+             */
+            List<CipherSuite> suiteList = new LinkedList<>();
+            suiteList.add(CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA);
+            config.setDefaultServerSupportedCiphersuites(suiteList);
+            config.setDefaultClientSupportedCiphersuites(suiteList);
+            config.setDefaultSelectedCipherSuite(suiteList.get(0));
+        }
+        return config;
+    }
+
+}

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/config/delegate/ProxyDelegate.java

@@ -0,0 +1,75 @@
+/**
+ * TLS-Attacker - A Modular Penetration Testing Framework for TLS
+ *
+ * Copyright 2014-2017 Ruhr University Bochum / Hackmanit GmbH
+ *
+ * Licensed under Apache License 2.0
+ * http://www.apache.org/licenses/LICENSE-2.0
+ */
+package de.rub.nds.tlsattacker.attacks.config.delegate;
+
+import com.beust.jcommander.Parameter;
+import com.beust.jcommander.ParameterException;
+import de.rub.nds.tlsattacker.core.config.Config;
+import de.rub.nds.tlsattacker.core.config.delegate.Delegate;
+import de.rub.nds.tlsattacker.core.connection.OutboundConnection;
+
+/**
+ *
+ * @author ic0ns
+ */
+public class ProxyDelegate extends Delegate {
+
+    @Parameter(names = "-proxyData", description = "Specify the host and port for data used in the proxy. Syntax: localhost:4444")
+    private String proxyData = "localhost:4444";
+
+    @Parameter(names = "-proxyControl", description = "Specify the host and port for control messafes used in the proxy. Syntax: localhost:5555")
+    private String proxyControl = "localhost:5555";
+
+    @Override
+    public void applyDelegate(Config config) {
+
+        OutboundConnection con = config.getDefaultClientConnection();
+        if (con == null) {
+            con = new OutboundConnection();
+            config.setDefaultClientConnection(con);
+        }
+        if (proxyData != null) {
+            String[] parsedProxyData = proxyData.split(":");
+            switch (parsedProxyData.length) {
+                case 1:
+                    con.setProxyDataHostname(proxyData);
+                    break;
+                case 2:
+                    con.setProxyDataHostname(parsedProxyData[0]);
+                    con.setProxyDataPort(parsePort(parsedProxyData[1]));
+                    break;
+                default:
+                    throw new ParameterException("Could not parse provided proxyData: " + proxyData);
+            }
+        }
+
+        if (proxyControl != null) {
+            String[] parsedProxyControl = proxyControl.split(":");
+            switch (parsedProxyControl.length) {
+                case 1:
+                    con.setProxyControlHostname(proxyControl);
+                    break;
+                case 2:
+                    con.setProxyControlHostname(parsedProxyControl[0]);
+                    con.setProxyControlPort(parsePort(parsedProxyControl[1]));
+                    break;
+                default:
+                    throw new ParameterException("Could not parse provided proxyControl: " + proxyControl);
+            }
+        }
+    }
+
+    private int parsePort(String portStr) {
+        int port = Integer.parseInt(portStr);
+        if (port < 0 || port > 65535) {
+            throw new ParameterException("port must be in interval [0,65535], but is " + port);
+        }
+        return port;
+    }
+}