Merge pull request #758 from tls-attacker/certSelectionFix

Fixed certificate key selection for new certificates

Author: ic0ns

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/certificate/CertificateByteChooser.java

@@ -56,14 +56,20 @@ private List<String> getResourceFiles() throws IOException {
         filenames.add("ec_secp160r2_rsa_cert.pem");
         filenames.add("ec_sect409k1_rsa_cert.pem");
         filenames.add("ec_sect193r2_ecdsa_cert.pem");
-        filenames.add("dh_dsa_cert.pem");
+        filenames.add("dh3072_dsa_cert.pem");
+        filenames.add("dh2048_dsa_cert.pem");
+        filenames.add("dh1024_dsa_cert.pem");
+        filenames.add("dh512_dsa_cert.pem");
         filenames.add("ec_sect163r2_rsa_cert.pem");
         filenames.add("ec_secp224r1_ecdsa_cert.pem");
         filenames.add("ec_sect571r1_ecdsa_cert.pem");
         filenames.add("ec_secp192k1_rsa_cert.pem");
         filenames.add("ec_sect409r1_rsa_cert.pem");
         filenames.add("ec_sect233k1_ecdsa_cert.pem");
-        filenames.add("dh_rsa_cert.pem");
+        filenames.add("dh3072_rsa_cert.pem");
+        filenames.add("dh2048_rsa_cert.pem");
+        filenames.add("dh1024_rsa_cert.pem");
+        filenames.add("dh512_rsa_cert.pem");
         filenames.add("ec_sect193r1_rsa_cert.pem");
         filenames.add("ec_secp256k1_ecdsa_cert.pem");
         filenames.add("rsa1024_rsa_cert.pem");
@@ -108,6 +114,10 @@ private List<String> getResourceFiles() throws IOException {
         filenames.add("ec_sect193r1_ecdsa_cert.pem");
         filenames.add("ec_secp256r1_ecdsa_cert.pem");
         filenames.add("ec_secp256r1_rsa_cert.pem");
+        filenames.add("dh3072_ecdsa_cert.pem");
+        filenames.add("dh2048_ecdsa_cert.pem");
+        filenames.add("dh1024_ecdsa_cert.pem");
+        filenames.add("dh512_ecdsa_cert.pem");
         // filenames.add("gost01_0_cert.pem");
         filenames.add("gost01_A_cert.pem");
         filenames.add("gost01_B_cert.pem");
@@ -133,7 +143,7 @@ private void loadKeys() {
                     try {
                         Certificate readCertificate = PemUtil.readCertificate(
                             this.getClass().getClassLoader().getResourceAsStream(RESOURCE_PATH + file));
-                        String keyName = file.replace("cert.pem", "key.pem");
+                        String keyName = resolveKeyfileFromCert(file);
                         PrivateKey privateKey = PemUtil.readPrivateKey(
                             this.getClass().getClassLoader().getResourceAsStream(RESOURCE_PATH + keyName));
                         keyPairList.add(new CertificateKeyPair(readCertificate, privateKey));
@@ -260,4 +270,17 @@ public CertificateKeyPair chooseCertificateKeyPair(Chooser chooser) {
         }
         return keyPairList.get(0);
     }
+
+    private String resolveKeyfileFromCert(String certName) {
+        int signatureTypeSuffixIndex;
+        if (certName.startsWith("ec_")) {
+            signatureTypeSuffixIndex = certName.indexOf("_", 4);
+            return certName.substring(0, signatureTypeSuffixIndex) + "_key.pem";
+        } else if (certName.startsWith("rsa") || certName.startsWith("dh") || certName.startsWith("dsa")) {
+            signatureTypeSuffixIndex = certName.indexOf("_");
+            return certName.substring(0, signatureTypeSuffixIndex) + "_key.pem";
+        } else {
+            return certName.replace("cert.pem", "key.pem");
+        }
+    }
 }

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/config/Config.java

@@ -34,6 +34,7 @@
 import de.rub.nds.tlsattacker.core.constants.GOSTCurve;
 import de.rub.nds.tlsattacker.core.constants.HashAlgorithm;
 import de.rub.nds.tlsattacker.core.constants.HeartbeatMode;
+import de.rub.nds.tlsattacker.core.constants.KeyUpdateRequest;
 import de.rub.nds.tlsattacker.core.constants.MaxFragmentLength;
 import de.rub.nds.tlsattacker.core.constants.NameType;
 import de.rub.nds.tlsattacker.core.constants.NamedGroup;
@@ -305,6 +306,11 @@ public static Config createEmptyConfig() {
      */
     private MaxFragmentLength maxFragmentLength = MaxFragmentLength.TWO_9;
 
+    /**
+     * Determine if a KeyUpdate should be requested from peer
+     */
+    private KeyUpdateRequest defaultKeyUpdateRequestMode = KeyUpdateRequest.UPDATE_NOT_REQUESTED;
+
     /**
      * Determine if CCS should be encrypted in TLS 1.3 if encryption is set up for record layer
      */
@@ -3923,4 +3929,12 @@ public Boolean isEncryptChangeCipherSpec() {
     public void setEncryptChangeCipherSpec(Boolean encryptChangeCipherSpec) {
         this.encryptChangeCipherSpecTls13 = encryptChangeCipherSpec;
     }
+
+    public KeyUpdateRequest getDefaultKeyUpdateRequestMode() {
+        return defaultKeyUpdateRequestMode;
+    }
+
+    public void setDefaultKeyUpdateRequestMode(KeyUpdateRequest defaultKeyUpdateRequestMode) {
+        this.defaultKeyUpdateRequestMode = defaultKeyUpdateRequestMode;
+    }
 }

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/KeyUpdateRequest.java

@@ -9,22 +9,18 @@
 
 package de.rub.nds.tlsattacker.core.constants;
 
-import de.rub.nds.modifiablevariable.ModifiableVariableFactory;
-import de.rub.nds.modifiablevariable.singlebyte.ModifiableByte;
-
 public enum KeyUpdateRequest {
 
     UPDATE_NOT_REQUESTED((byte) 0),
     UPDATE_REQUESTED((byte) 1);
 
-    private ModifiableByte requestUpdate;
+    private byte value;
 
-    private KeyUpdateRequest(byte requestUpdate) {
-        this.requestUpdate = ModifiableVariableFactory.safelySetValue(this.requestUpdate, requestUpdate);
+    private KeyUpdateRequest(byte value) {
+        this.value = value;
     }
 
     public byte getValue() {
-        return requestUpdate.getValue();
+        return value;
     }
-
 }

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/protocol/message/KeyUpdateMessage.java

@@ -9,6 +9,8 @@
 
 package de.rub.nds.tlsattacker.core.protocol.message;
 
+import de.rub.nds.modifiablevariable.ModifiableVariableFactory;
+import de.rub.nds.modifiablevariable.singlebyte.ModifiableByte;
 import de.rub.nds.tlsattacker.core.config.Config;
 import de.rub.nds.tlsattacker.core.constants.HandshakeMessageType;
 import de.rub.nds.tlsattacker.core.constants.KeyUpdateRequest;
@@ -22,7 +24,7 @@ public class KeyUpdateMessage extends HandshakeMessage {
 
     private static final Logger LOGGER = LogManager.getLogger();
 
-    private KeyUpdateRequest requestUpdate;
+    private ModifiableByte requestMode;
 
     @Override
     public KeyUpdateHandler getHandler(TlsContext context) {
@@ -32,27 +34,29 @@ public KeyUpdateHandler getHandler(TlsContext context) {
     public KeyUpdateMessage() {
         super(HandshakeMessageType.KEY_UPDATE);
         this.setIncludeInDigest(false);
-        this.requestUpdate = KeyUpdateRequest.UPDATE_NOT_REQUESTED;
     }
 
     public KeyUpdateMessage(Config tlsConfig) {
         super(tlsConfig, HandshakeMessageType.KEY_UPDATE);
-        this.requestUpdate = KeyUpdateRequest.UPDATE_NOT_REQUESTED;
         this.setIncludeInDigest(false);
     }
 
-    public KeyUpdateMessage(HandshakeMessageType handshakeMessageType, KeyUpdateRequest requestUpdate) {
-        super(handshakeMessageType);
-        this.requestUpdate = requestUpdate;
+    public KeyUpdateMessage(Config tlsConfig, KeyUpdateRequest requestUpdate) {
+        super(tlsConfig, HandshakeMessageType.KEY_UPDATE);
+        setRequestMode(requestUpdate);
         this.setIncludeInDigest(false);
     }
 
-    public void setRequestUpdate(KeyUpdateRequest keyupdaterequest) {
-        requestUpdate = keyupdaterequest;
+    public final void setRequestMode(KeyUpdateRequest requestMode) {
+        this.requestMode = ModifiableVariableFactory.safelySetValue(this.requestMode, requestMode.getValue());
+    }
+
+    public void setRequestMode(ModifiableByte requestMode) {
+        this.requestMode = requestMode;
     }
 
-    public KeyUpdateRequest getRequestUpdate() {
-        return this.requestUpdate;
+    public ModifiableByte getRequestMode() {
+        return this.requestMode;
     }
 
 }

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/protocol/parser/KeyUpdateParser.java

@@ -38,13 +38,13 @@ protected KeyUpdateMessage createHandshakeMessage() {
     }
 
     private void parseUpdateRequest(KeyUpdateMessage msg) {
-
-        if (parseByteField(HandshakeByteLength.KEY_UPDATE_LENGTH) == KeyUpdateRequest.UPDATE_REQUESTED.getValue()) {
-            msg.setRequestUpdate(KeyUpdateRequest.UPDATE_REQUESTED);
+        byte requestMode = parseByteField(HandshakeByteLength.KEY_UPDATE_LENGTH);
+        if (requestMode == KeyUpdateRequest.UPDATE_REQUESTED.getValue()) {
+            msg.setRequestMode(KeyUpdateRequest.UPDATE_REQUESTED);
         } else {
-            msg.setRequestUpdate(KeyUpdateRequest.UPDATE_NOT_REQUESTED);
+            msg.setRequestMode(KeyUpdateRequest.UPDATE_NOT_REQUESTED);
         }
-        LOGGER.debug("KeyUpdateValue: " + msg.getRequestUpdate());
+        LOGGER.debug("KeyUpdateValue: " + msg.getRequestMode().getValue());
 
     }
 

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/protocol/preparator/KeyUpdatePreparator.java

@@ -9,7 +9,6 @@
 
 package de.rub.nds.tlsattacker.core.protocol.preparator;
 
-import de.rub.nds.tlsattacker.core.constants.KeyUpdateRequest;
 import de.rub.nds.tlsattacker.core.protocol.message.KeyUpdateMessage;
 import de.rub.nds.tlsattacker.core.workflow.chooser.Chooser;
 import org.apache.logging.log4j.LogManager;
@@ -27,8 +26,10 @@ public KeyUpdatePreparator(Chooser chooser, KeyUpdateMessage message) {
 
     @Override
     protected void prepareHandshakeMessageContents() {
-        msg.setRequestUpdate(msg.getRequestUpdate());
-        LOGGER.debug("Preparing KeyUpdate - MessageContent is: " + msg.getRequestUpdate());
+        if (msg.getRequestMode() == null) {
+            msg.setRequestMode(chooser.getConfig().getDefaultKeyUpdateRequestMode());
+        }
+        LOGGER.debug("Preparing KeyUpdate - MessageContent is: " + msg.getRequestMode().getValue());
     }
 
 }

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/protocol/serializer/KeyUpdateSerializer.java

@@ -43,8 +43,8 @@ public byte[] serializeHandshakeMessageContent() {
     }
 
     private void writeKeyUpdateData(KeyUpdateMessage msg) {
-        appendByte(msg.getRequestUpdate().getValue());
-        LOGGER.debug("Serialized KeyUpdate Value: " + msg.getRequestUpdate());
+        appendByte(msg.getRequestMode().getValue());
+        LOGGER.debug("Serialized KeyUpdate Value: " + msg.getRequestMode());
     }
 
 }

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/workflow/action/executor/ReceiveMessageHelper.java

@@ -779,7 +779,6 @@ private byte[] tryToFetchAdditionalBytes(TlsContext context) {
      */
     private boolean recordGroupIndicatesWrongTls13KeySet(List<ProtocolMessage> parsedMessages,
         RecordGroup recordGroup) {
-        // todo: once KeyUpdate is implemented, check if it counts as HS message
         Set<Tls13KeySetType> expectedKeyTypes = new HashSet<>();
         for (ProtocolMessage msg : parsedMessages) {
             if (!(msg instanceof TlsMessage)) {
@@ -788,7 +787,7 @@ private boolean recordGroupIndicatesWrongTls13KeySet(List<ProtocolMessage> parse
 
             switch (((TlsMessage) msg).getProtocolMessageType()) {
                 case HANDSHAKE:
-                    if (msg instanceof NewSessionTicketMessage) {
+                    if (msg instanceof NewSessionTicketMessage || msg instanceof KeyUpdateMessage) {
                         expectedKeyTypes.add(Tls13KeySetType.APPLICATION_TRAFFIC_SECRETS);
                     } else if (msg instanceof ClientHelloMessage || msg instanceof ServerHelloMessage) {
                         expectedKeyTypes.add(Tls13KeySetType.NONE);

TLS-Core/src/main/resources/Config.xsd

@@ -171,6 +171,7 @@
       <xs:element name="prefferedCertRsaKeySize" type="xs:int" minOccurs="0"/>
       <xs:element name="prefferedCertDssKeySize" type="xs:int" minOccurs="0"/>
       <xs:element name="maxFragmentLength" type="maxFragmentLength" minOccurs="0"/>
+      <xs:element name="defaultKeyUpdateRequestMode" type="keyUpdateRequest" minOccurs="0"/>
       <xs:element name="encryptChangeCipherSpecTls13" type="xs:boolean" minOccurs="0"/>
       <xs:element name="tlsSessionTicket" type="xs:string" minOccurs="0"/>
       <xs:element name="defaultClientRenegotiationInfo" type="xs:string" minOccurs="0"/>
@@ -1902,6 +1903,13 @@
     </xs:restriction>
   </xs:simpleType>
 
+  <xs:simpleType name="keyUpdateRequest">
+    <xs:restriction base="xs:string">
+      <xs:enumeration value="UPDATE_NOT_REQUESTED"/>
+      <xs:enumeration value="UPDATE_REQUESTED"/>
+    </xs:restriction>
+  </xs:simpleType>
+
   <xs:simpleType name="tokenBindingVersion">
     <xs:restriction base="xs:string">
       <xs:enumeration value="DRAFT_1"/>

TLS-Core/src/main/resources/certs/attacker_dsa_ca.pem

@@ -1,28 +1,28 @@
 -----BEGIN CERTIFICATE-----
-MIIEsTCCBG+gAwIBAgIUTJr2OVFsu4NGKzgmVC89Tp9ImGEwCwYJYIZIAWUDBAMC
+MIIEyjCCBHigAwIBAgIUcl0c6yH7eukzGmbEUxZ5Vzf3B2IwCwYJYIZIAWUDBAMC
 MEgxCzAJBgNVBAYTAkRFMQwwCgYDVQQIDANOUlcxDzANBgNVBAcMBkJvY2h1bTEM
-MAoGA1UECgwDUlVCMQwwCgYDVQQLDANORFMwHhcNMjEwNTE5MDc1NjAxWhcNMjYx
-MTA5MDc1NjAxWjBIMQswCQYDVQQGEwJERTEMMAoGA1UECAwDTlJXMQ8wDQYDVQQH
-DAZCb2NodW0xDDAKBgNVBAoMA1JVQjEMMAoGA1UECwwDTkRTMIIDOjCCAi0GByqG
-SM44BAEwggIgAoIBAQDzEYcKCMBrTdDBjjuL/9wGItPzwSqJZfN1+3PjeOz66t0Z
-/zvioORtcsnTdsJF1wLRn0lPNm2XCagfLREmU3pxOsA+VapwMAAzJNfq5udWZ4gw
-lUURl0irAgUuFO8oDXIkZVREXAMSYQP5kFzCrjMVUIUr4xtT5XPk+0x5cFX2SUpy
-3HEzAOd/Of1SBZG9BO6yP4g5879xTTYRtlluvJLJ53zub29VYSYHyk9vSD9WCbXp
-TU6p4Jy6iB8r2mRPa/Hbn0gVhEPKxmZexp4uP//C1ArNX3HAgLIdHrN3rznhBkkd
-0FssuW5DJB9pYlKXUU7H5y1LXtqYDGKXXCQbDUWDAhUA+ROHs5eW4dgEoc+vQ1xy
-zpwdFpcCggEAODpkqjFui65M/tHG2O/gqa8yhmFl9uubj3yiULzYI0yC7gE/cjuu
-5JYnDXF+Bo9ooQU8KHXhMObwcSND2JuzInpWNZsLcqyyI0v2oNMDBlDe/xIBjPUg
-bJgCX7Xf+oMro2TW//EV0qhfNczIjFtDEqaBpG0JWeWPrKNpynQ0DincdeqbixxJ
-8mJb7Gq98UluQ18vKEJ7BG0k7yvnazhGsbHZYKP530+cL2wscZDYFOzE2S3NXdP1
-hxJlurdfzGT3Cg16JbkUUGw59hpV0vZnejO28mFi6HWbFuYNVe+NEL+KhOxWHZZI
-Oda/KKe2J79ioj2QpMDRcac6R+F28rT3AgOCAQUAAoIBACLABMpypaQev2i6LV6S
-8IhM2+bYGSTICDPoWlgWq2eE71vSgvoUfLhoiv7jsDmHkZ3oEo/xFZaMhBQrU2vm
-WfkkiefaeomIbaakDCPnGSu7Kw6OfKsoKZKDCxCYTV/1RDYz8+SXAIwAxuJwc+eR
-c8FeFMjWXOzjZN21rMO7MuYDKPPoMwMKUy0nf1u1ChbYHhaojL4XSuhJHK+5SFu2
-CLADI/SdpfYL0XGLf3dbYT0nG/Kjp1OFhLBmNKe+KlM1PK2Ynp0SS4FK2d97LV8f
-/k0yyJieUyV4UPddO1Wvm6/v6h5gH840LkIK2EOQVHopYHe3mJ74nTmJLqeKRvt4
-cE6jUzBRMB0GA1UdDgQWBBRpmsxkkFVUZPBQDxNc5k1rgzzFAjAfBgNVHSMEGDAW
-gBRpmsxkkFVUZPBQDxNc5k1rgzzFAjAPBgNVHRMBAf8EBTADAQH/MAsGCWCGSAFl
-AwQDAgMvADAsAhQJho851YfUpoXF2ltclHKa6aPqFAIUGBggZqDYClOkbi8Vah/A
-VW5mgFQ=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 -----END CERTIFICATE-----