Merge branch 'master' into longOracle

Author: ic0ns

.gitignore

@@ -42,3 +42,5 @@ Utils/.settings/org.eclipse.core.resources.prefs
 Utils/.settings/org.eclipse.jdt.core.prefs
 .project
 test.sh
+.settings/
+.classpath

.idea/codeStyles/codeStyleConfig.xml

@@ -4,7 +4,7 @@
     <parent>
         <groupId>de.rub.nds.tlsattacker</groupId>
         <artifactId>TLS-Attacker</artifactId>
-        <version>2.8</version>
+        <version>3.3.1</version>
     </parent>
     <artifactId>Attacks</artifactId>
     <packaging>jar</packaging>

Attacks/pom.xml

@@ -59,6 +59,8 @@ public static void main(String[] args) {
         jc.addCommand(Cve20162107CommandConfig.ATTACK_COMMAND, cve20162107);
         EarlyCCSCommandConfig earlyCCS = new EarlyCCSCommandConfig(generalDelegate);
         jc.addCommand(EarlyCCSCommandConfig.ATTACK_COMMAND, earlyCCS);
+        EarlyFinishedCommandConfig earlyFin = new EarlyFinishedCommandConfig(generalDelegate);
+        jc.addCommand(EarlyFinishedCommandConfig.ATTACK_COMMAND, earlyFin);
         PoodleCommandConfig poodle = new PoodleCommandConfig(generalDelegate);
         jc.addCommand(PoodleCommandConfig.ATTACK_COMMAND, poodle);
         SimpleMitmProxyCommandConfig simpleMitmProxy = new SimpleMitmProxyCommandConfig(generalDelegate);
@@ -100,6 +102,9 @@ public static void main(String[] args) {
             case EarlyCCSCommandConfig.ATTACK_COMMAND:
                 attacker = new EarlyCCSAttacker(earlyCCS, earlyCCS.createConfig());
                 break;
+            case EarlyFinishedCommandConfig.ATTACK_COMMAND:
+                attacker = new EarlyFinishedAttacker(earlyFin, earlyFin.createConfig());
+                break;
             case PoodleCommandConfig.ATTACK_COMMAND:
                 attacker = new PoodleAttacker(poodle, poodle.createConfig());
                 break;

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/Main.java

@@ -10,6 +10,7 @@
 
 import de.rub.nds.modifiablevariable.bool.BooleanExplicitValueModification;
 import de.rub.nds.modifiablevariable.bool.ModifiableBoolean;
+import de.rub.nds.modifiablevariable.util.Modifiable;
 import de.rub.nds.tlsattacker.core.constants.AlgorithmResolver;
 import de.rub.nds.tlsattacker.core.constants.ProtocolMessageType;
 import de.rub.nds.tlsattacker.core.protocol.handler.ClientKeyExchangeHandler;
@@ -20,7 +21,6 @@
 import de.rub.nds.tlsattacker.core.workflow.action.TlsAction;
 import de.rub.nds.tlsattacker.core.workflow.factory.WorkflowConfigurationFactory;
 import java.io.IOException;
-import java.net.SocketException;
 import java.util.LinkedList;
 import java.util.List;
 import org.apache.logging.log4j.LogManager;
@@ -57,21 +57,16 @@ public EarlyCcsAction(Boolean targetsOpenssl1_0_0) {
      *
      * @param state
      *            the State in which the action should be executed in
-     * @throws IOException
-     *             If something goes wrong during the transmission of the
-     *             ClientKeyExchange message
      */
     @Override
-    public void execute(State state) throws IOException {
+    public void execute(State state) {
         WorkflowConfigurationFactory factory = new WorkflowConfigurationFactory(state.getConfig());
         ClientKeyExchangeMessage message = factory.createClientKeyExchangeMessage(AlgorithmResolver
                 .getKeyExchangeAlgorithm(state.getTlsContext().getChooser().getSelectedCipherSuite()));
-        ModifiableBoolean modifiableBoolean = new ModifiableBoolean();
-        modifiableBoolean.setModification(new BooleanExplicitValueModification(false));
         if (!targetOpenssl1_0_0) {
-            message.setIncludeInDigest(modifiableBoolean);
+            message.setIncludeInDigest(Modifiable.explicit(false));
         }
-        message.setAdjustContext(modifiableBoolean);
+        message.setAdjustContext(Modifiable.explicit(false));
         ClientKeyExchangeHandler handler = (ClientKeyExchangeHandler) message.getHandler(state.getTlsContext());
         byte[] protocolMessageBytes = handler.prepareMessage(message);
         if (targetOpenssl1_0_0) {
@@ -80,13 +75,15 @@ public void execute(State state) throws IOException {
         }
         handler.adjustTlsContextAfterSerialize(message);
         List<AbstractRecord> recordList = new LinkedList<>();
-        recordList.add(new Record());
+        Record r = new Record();
+        r.setContentMessageType(ProtocolMessageType.HANDSHAKE);
+        recordList.add(r);
         byte[] prepareRecords = state.getTlsContext().getRecordLayer()
                 .prepareRecords(protocolMessageBytes, ProtocolMessageType.HANDSHAKE, recordList);
         try {
             state.getTlsContext().getTransportHandler().sendData(prepareRecords);
             executedAsPlanned = true;
-        } catch (SocketException E) {
+        } catch (IOException E) {
             LOGGER.debug("Could not write Data to stream", E);
             executedAsPlanned = false;
         }

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/actions/EarlyCcsAction.java

@@ -29,7 +29,7 @@ public IncrementingGuessProvider() {
 
     /**
      * Returns the last Guess incremented by 1.
-     * 
+     *
      * @return
      */
     @Override

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/bruteforce/IncrementingGuessProvider.java

@@ -11,11 +11,11 @@
 import com.beust.jcommander.Parameter;
 import com.beust.jcommander.ParametersDelegate;
 import de.rub.nds.tlsattacker.attacks.config.delegate.AttackDelegate;
+import de.rub.nds.tlsattacker.attacks.pkcs1.BleichenbacherWorkflowType;
 import de.rub.nds.tlsattacker.core.config.Config;
 import de.rub.nds.tlsattacker.core.config.delegate.CiphersuiteDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
-import de.rub.nds.tlsattacker.core.config.delegate.HostnameExtensionDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.ProtocolVersionDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.StarttlsDelegate;
 import de.rub.nds.tlsattacker.core.constants.AlgorithmResolver;
@@ -37,8 +37,6 @@ public class BleichenbacherCommandConfig extends AttackConfig {
     @ParametersDelegate
     private ClientDelegate clientDelegate;
     @ParametersDelegate
-    private HostnameExtensionDelegate hostnameExtensionDelegate;
-    @ParametersDelegate
     private CiphersuiteDelegate ciphersuiteDelegate;
     @ParametersDelegate
     private ProtocolVersionDelegate protocolVersionDelegate;
@@ -57,20 +55,23 @@ public class BleichenbacherCommandConfig extends AttackConfig {
     @ParametersDelegate
     private StarttlsDelegate starttlsDelegate;
 
+    @Parameter(names = "-workflowType", description = "Which workflow traces should be tested with")
+    private BleichenbacherWorkflowType workflowType = BleichenbacherWorkflowType.CKE_CCS_FIN;
+
+    ;
+
     /**
      *
      * @param delegate
      */
     public BleichenbacherCommandConfig(GeneralDelegate delegate) {
         super(delegate);
         clientDelegate = new ClientDelegate();
-        hostnameExtensionDelegate = new HostnameExtensionDelegate();
         ciphersuiteDelegate = new CiphersuiteDelegate();
         protocolVersionDelegate = new ProtocolVersionDelegate();
         attackDelegate = new AttackDelegate();
         starttlsDelegate = new StarttlsDelegate();
         addDelegate(clientDelegate);
-        addDelegate(hostnameExtensionDelegate);
         addDelegate(ciphersuiteDelegate);
         addDelegate(protocolVersionDelegate);
         addDelegate(attackDelegate);
@@ -157,11 +158,17 @@ public enum Type {
          *
          */
         FULL,
-
         /**
          *
          */
         FAST
     }
 
+    public BleichenbacherWorkflowType getWorkflowType() {
+        return workflowType;
+    }
+
+    public void setWorkflowType(BleichenbacherWorkflowType workflowType) {
+        this.workflowType = workflowType;
+    }
 }

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/config/BleichenbacherCommandConfig.java

@@ -14,7 +14,6 @@
 import de.rub.nds.tlsattacker.core.config.delegate.CiphersuiteDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
-import de.rub.nds.tlsattacker.core.config.delegate.HostnameExtensionDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.StarttlsDelegate;
 import de.rub.nds.tlsattacker.core.constants.CipherSuite;
 import de.rub.nds.tlsattacker.core.constants.ProtocolVersion;
@@ -40,8 +39,6 @@ public class Cve20162107CommandConfig extends AttackConfig {
     @ParametersDelegate
     private CiphersuiteDelegate cipherSuiteDelegate;
     @ParametersDelegate
-    private HostnameExtensionDelegate hostnameExtensionDelegate;
-    @ParametersDelegate
     private StarttlsDelegate starttlsDelegate;
 
     /**
@@ -56,11 +53,9 @@ public Cve20162107CommandConfig(GeneralDelegate delegate) {
         versions.add(ProtocolVersion.TLS12);
         clientDelegate = new ClientDelegate();
         cipherSuiteDelegate = new CiphersuiteDelegate();
-        hostnameExtensionDelegate = new HostnameExtensionDelegate();
         starttlsDelegate = new StarttlsDelegate();
         addDelegate(clientDelegate);
         addDelegate(cipherSuiteDelegate);
-        addDelegate(hostnameExtensionDelegate);
         addDelegate(starttlsDelegate);
 
     }
@@ -102,7 +97,7 @@ public Config createConfig() {
         config.setAddSignatureAndHashAlgorithmsExtension(true);
         config.setQuickReceive(true);
         config.setStopActionsAfterFatal(true);
-        config.setStopRecievingAfterFatal(true);
+        config.setStopReceivingAfterFatal(true);
         config.setEarlyStop(true);
         if (cipherSuiteDelegate.getCipherSuites() == null) {
             List<CipherSuite> cipherSuites = new LinkedList<>();

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/config/Cve20162107CommandConfig.java

@@ -12,6 +12,7 @@
 import de.rub.nds.tlsattacker.core.config.Config;
 import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
+import de.rub.nds.tlsattacker.core.config.delegate.StarttlsDelegate;
 import de.rub.nds.tlsattacker.core.constants.ProtocolVersion;
 import de.rub.nds.tlsattacker.core.record.layer.RecordLayerType;
 
@@ -28,14 +29,19 @@ public class DrownCommandConfig extends AttackConfig {
     @ParametersDelegate
     private ClientDelegate clientDelegate;
 
+    @ParametersDelegate
+    private StarttlsDelegate starttlsDelegate;
+
     /**
      *
      * @param delegate
      */
     public DrownCommandConfig(GeneralDelegate delegate) {
         super(delegate);
         clientDelegate = new ClientDelegate();
+        starttlsDelegate = new StarttlsDelegate();
         addDelegate(clientDelegate);
+        addDelegate(starttlsDelegate);
     }
 
     /**

Attacks/src/main/java/de/rub/nds/tlsattacker/attacks/config/DrownCommandConfig.java

@@ -13,8 +13,8 @@
 import de.rub.nds.tlsattacker.core.config.delegate.CiphersuiteDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.ClientDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.GeneralDelegate;
-import de.rub.nds.tlsattacker.core.config.delegate.HostnameExtensionDelegate;
 import de.rub.nds.tlsattacker.core.config.delegate.ProtocolVersionDelegate;
+import de.rub.nds.tlsattacker.core.config.delegate.StarttlsDelegate;
 import de.rub.nds.tlsattacker.core.constants.AlgorithmResolver;
 import de.rub.nds.tlsattacker.core.constants.CipherSuite;
 import de.rub.nds.tlsattacker.core.constants.KeyExchangeAlgorithm;
@@ -32,11 +32,11 @@ public class EarlyCCSCommandConfig extends AttackConfig {
     @ParametersDelegate
     private ClientDelegate clientDelegate;
     @ParametersDelegate
-    private HostnameExtensionDelegate hostnameExtensionDelegate;
-    @ParametersDelegate
     private CiphersuiteDelegate ciphersuiteDelegate;
     @ParametersDelegate
     private ProtocolVersionDelegate protocolVersionDelegate;
+    @ParametersDelegate
+    private StarttlsDelegate starttlsDelegate;
 
     /**
      *
@@ -45,13 +45,13 @@ public class EarlyCCSCommandConfig extends AttackConfig {
     public EarlyCCSCommandConfig(GeneralDelegate delegate) {
         super(delegate);
         clientDelegate = new ClientDelegate();
-        hostnameExtensionDelegate = new HostnameExtensionDelegate();
         ciphersuiteDelegate = new CiphersuiteDelegate();
         protocolVersionDelegate = new ProtocolVersionDelegate();
+        starttlsDelegate = new StarttlsDelegate();
         addDelegate(clientDelegate);
-        addDelegate(hostnameExtensionDelegate);
         addDelegate(ciphersuiteDelegate);
         addDelegate(protocolVersionDelegate);
+        addDelegate(starttlsDelegate);
     }
 
     /**
@@ -75,7 +75,7 @@ public Config createConfig() {
         config.setAddSignatureAndHashAlgorithmsExtension(true);
         config.setQuickReceive(true);
         config.setStopActionsAfterFatal(true);
-        config.setStopRecievingAfterFatal(true);
+        config.setStopReceivingAfterFatal(true);
         config.setEarlyStop(true);
         boolean containsEc = false;
         for (CipherSuite suite : config.getDefaultClientSupportedCiphersuites()) {