Merge remote-tracking branch 'origin/raw_publickeys' into dtls_fixes

Author: Paul Fiterau

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/config/Config.java

@@ -195,7 +195,7 @@ public static Config createEmptyConfig() {
     /**
      * Which Signature and Hash algorithms we support
      */
-    private List<SignatureAndHashAlgorithm> supportedSignatureAndHashAlgorithms;
+    private List<SignatureAndHashAlgorithm> defaultClientSupportedSignatureAndHashAlgorithms;
 
     /**
      * Which Ciphersuites we support by default
@@ -844,12 +844,14 @@ public static Config createEmptyConfig() {
      */
     private CipherSuite defaultSelectedCipherSuite = CipherSuite.TLS_RSA_WITH_AES_128_CBC_SHA;
 
+    private CertificateType defaultSelectedServerCertificateType = CertificateType.X509;
+
+    private CertificateType defaultSelectedClientCertificateType = CertificateType.X509;
+
     private List<ECPointFormat> defaultServerSupportedPointFormats;
 
     private List<ECPointFormat> defaultClientSupportedPointFormats;
 
-    private List<SignatureAndHashAlgorithm> defaultClientSupportedSignatureAndHashAlgorithms;
-
     private List<SignatureAndHashAlgorithm> defaultServerSupportedSignatureAndHashAlgorithms;
 
     private SignatureAndHashAlgorithm defaultSelectedSignatureAndHashAlgorithm = SignatureAndHashAlgorithm.RSA_SHA1;
@@ -1126,8 +1128,8 @@ public static Config createEmptyConfig() {
         defaultServerConnection = new InboundConnection("server", 443, "localhost");
         workflowTraceType = WorkflowTraceType.HANDSHAKE;
 
-        supportedSignatureAndHashAlgorithms = new LinkedList<>();
-        supportedSignatureAndHashAlgorithms.addAll(SignatureAndHashAlgorithm.getImplemented());
+        defaultClientSupportedSignatureAndHashAlgorithms = new LinkedList<>();
+        defaultClientSupportedSignatureAndHashAlgorithms.addAll(SignatureAndHashAlgorithm.getImplemented());
         defaultClientSupportedCompressionMethods = new LinkedList<>();
         defaultClientSupportedCompressionMethods.add(CompressionMethod.NULL);
         defaultServerSupportedCompressionMethods = new LinkedList<>();
@@ -1228,6 +1230,22 @@ public Config createCopy() {
         return ConfigIO.read(new ByteArrayInputStream(stream.toByteArray()));
     }
 
+    public CertificateType getDefaultSelectedServerCertificateType() {
+        return defaultSelectedServerCertificateType;
+    }
+
+    public void setDefaultSelectedServerCertificateType(CertificateType defaultSelectedServerCertificateType) {
+        this.defaultSelectedServerCertificateType = defaultSelectedServerCertificateType;
+    }
+
+    public CertificateType getDefaultSelectedClientCertificateType() {
+        return defaultSelectedClientCertificateType;
+    }
+
+    public void setDefaultSelectedClientCertificateType(CertificateType defaultSelectedClientCertificateType) {
+        this.defaultSelectedClientCertificateType = defaultSelectedClientCertificateType;
+    }
+
     public ECPointFormat getDefaultSelectedPointFormat() {
         return defaultSelectedPointFormat;
     }
@@ -1924,21 +1942,6 @@ public final void setDefaultClientSNIEntries(SNIEntry... defaultClientSNIEntryLi
         this.defaultClientSNIEntryList = new ArrayList(Arrays.asList(defaultClientSNIEntryList));
     }
 
-    public List<SignatureAndHashAlgorithm> getDefaultClientSupportedSignatureAndHashAlgorithms() {
-        return defaultClientSupportedSignatureAndHashAlgorithms;
-    }
-
-    public void setDefaultClientSupportedSignatureAndHashAlgorithms(
-            List<SignatureAndHashAlgorithm> defaultClientSupportedSignatureAndHashAlgorithms) {
-        this.defaultClientSupportedSignatureAndHashAlgorithms = defaultClientSupportedSignatureAndHashAlgorithms;
-    }
-
-    public final void setDefaultClientSupportedSignatureAndHashAlgorithms(
-            SignatureAndHashAlgorithm... defaultClientSupportedSignatureAndHashAlgorithms) {
-        this.defaultClientSupportedSignatureAndHashAlgorithms = Arrays
-                .asList(defaultClientSupportedSignatureAndHashAlgorithms);
-    }
-
     public List<ECPointFormat> getDefaultServerSupportedPointFormats() {
         return defaultServerSupportedPointFormats;
     }
@@ -2271,18 +2274,19 @@ public void setClientAuthentication(Boolean clientAuthentication) {
         this.clientAuthentication = clientAuthentication;
     }
 
-    public List<SignatureAndHashAlgorithm> getSupportedSignatureAndHashAlgorithms() {
-        return supportedSignatureAndHashAlgorithms;
+    public List<SignatureAndHashAlgorithm> getDefaultClientSupportedSignatureAndHashAlgorithms() {
+        return defaultClientSupportedSignatureAndHashAlgorithms;
     }
 
-    public void setSupportedSignatureAndHashAlgorithms(
-            List<SignatureAndHashAlgorithm> supportedSignatureAndHashAlgorithms) {
-        this.supportedSignatureAndHashAlgorithms = supportedSignatureAndHashAlgorithms;
+    public void setDefaultClientSupportedSignatureAndHashAlgorithms(
+            List<SignatureAndHashAlgorithm> defaultClientSupportedSignatureAndHashAlgorithms) {
+        this.defaultClientSupportedSignatureAndHashAlgorithms = defaultClientSupportedSignatureAndHashAlgorithms;
     }
 
     public final void setSupportedSignatureAndHashAlgorithms(
             SignatureAndHashAlgorithm... supportedSignatureAndHashAlgorithms) {
-        this.supportedSignatureAndHashAlgorithms = new ArrayList(Arrays.asList(supportedSignatureAndHashAlgorithms));
+        this.defaultClientSupportedSignatureAndHashAlgorithms = new ArrayList(
+                Arrays.asList(supportedSignatureAndHashAlgorithms));
     }
 
     public List<ProtocolVersion> getSupportedVersions() {

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/config/delegate/SignatureAndHashAlgorithmDelegate.java

@@ -38,7 +38,8 @@ public void setSignatureAndHashAlgorithms(List<SignatureAndHashAlgorithm> signat
     public void applyDelegate(Config config) {
         if (signatureAndHashAlgorithms != null) {
             config.setAddSignatureAndHashAlgorithmsExtension(true);
-            config.setSupportedSignatureAndHashAlgorithms(signatureAndHashAlgorithms);
+            config.setDefaultClientSupportedSignatureAndHashAlgorithms(signatureAndHashAlgorithms);
+            config.setDefaultServerSupportedSignatureAndHashAlgorithms(signatureAndHashAlgorithms);
             config.setDefaultSelectedSignatureAndHashAlgorithm(signatureAndHashAlgorithms.get(0));
         }
     }

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/protocol/handler/CertificateMessageHandler.java

@@ -10,8 +10,12 @@
 
 import de.rub.nds.modifiablevariable.util.ArrayConverter;
 import de.rub.nds.tlsattacker.core.certificate.CertificateKeyPair;
+import de.rub.nds.tlsattacker.core.constants.CertificateType;
 import de.rub.nds.tlsattacker.core.constants.HandshakeByteLength;
 import de.rub.nds.tlsattacker.core.constants.HandshakeMessageType;
+import de.rub.nds.tlsattacker.core.constants.NamedGroup;
+import de.rub.nds.tlsattacker.core.crypto.ec.Point;
+import de.rub.nds.tlsattacker.core.crypto.ec.PointFormatter;
 import de.rub.nds.tlsattacker.core.exceptions.AdjustmentException;
 import de.rub.nds.tlsattacker.core.protocol.handler.extension.ExtensionHandler;
 import de.rub.nds.tlsattacker.core.protocol.handler.factory.HandlerFactory;
@@ -30,6 +34,10 @@
 import java.io.IOException;
 import org.apache.logging.log4j.LogManager;
 import org.apache.logging.log4j.Logger;
+import org.bouncycastle.asn1.ASN1InputStream;
+import org.bouncycastle.asn1.ASN1ObjectIdentifier;
+import org.bouncycastle.asn1.DERBitString;
+import org.bouncycastle.asn1.DLSequence;
 import org.bouncycastle.crypto.tls.Certificate;
 
 public class CertificateMessageHandler extends HandshakeMessageHandler<CertificateMessage> {
@@ -55,55 +63,132 @@ public CertificateMessageSerializer getSerializer(CertificateMessage message) {
         return new CertificateMessageSerializer(message, tlsContext.getChooser().getSelectedProtocolVersion());
     }
 
+    private CertificateType selectTypeInternally() {
+        if (tlsContext.getTalkingConnectionEndType() == ConnectionEndType.SERVER) {
+            return tlsContext.getChooser().getSelectedServerCertificateType();
+        } else {
+            return tlsContext.getChooser().getSelectedClientCertificateType();
+        }
+    }
+
     @Override
     public void adjustTLSContext(CertificateMessage message) {
-        Certificate cert;
-        if (tlsContext.getChooser().getSelectedProtocolVersion().isTLS13()) {
-            ByteArrayOutputStream stream = new ByteArrayOutputStream();
-            int certificatesLength = 0;
-            try {
-                for (CertificatePair pair : message.getCertificatesList()) {
-                    stream.write(ArrayConverter.intToBytes(pair.getCertificateLength().getValue(),
-                            HandshakeByteLength.CERTIFICATE_LENGTH));
-                    stream.write(pair.getCertificate().getValue());
-                    certificatesLength += pair.getCertificateLength().getValue()
-                            + HandshakeByteLength.CERTIFICATE_LENGTH;
+        switch (selectTypeInternally()) {
+            case OPEN_PGP:
+                throw new UnsupportedOperationException("We do not support OpenPGP keys");
+            case RAW_PUBLIC_KEY:
+                LOGGER.debug("Adjusting context for RAW PUBLIC KEY ceritifate message");
+                try {
+                    // TODO Temporary parsing, we need to redo this once
+                    // x509/asn1 attacker is integrated
+                    ASN1InputStream asn1Stream = new ASN1InputStream(message.getCertificatesListBytes().getValue());
+                    DLSequence dlSeq = (DLSequence) asn1Stream.readObject();
+                    DLSequence identifier = (DLSequence) dlSeq.getObjectAt(0);
+                    NamedGroup group = null;
+                    ASN1ObjectIdentifier keyType = (ASN1ObjectIdentifier) identifier.getObjectAt(0);
+                    if (keyType.getId().equals("1.2.840.10045.2.1")) {
+                        ASN1ObjectIdentifier curveType = (ASN1ObjectIdentifier) identifier.getObjectAt(1);
+                        if (curveType.getId().equals("1.2.840.10045.3.1.7")) {
+                            group = NamedGroup.SECP256R1;
+                        } else {
+                            throw new UnsupportedOperationException(
+                                    "We currently do only support secp256r1 public keys. Sorry...");
+                        }
+                        DERBitString publicKey = (DERBitString) dlSeq.getObjectAt(1);
+                        byte[] pointBytes = publicKey.getBytes();
+                        Point publicKeyPoint = PointFormatter.formatFromByteArray(group, pointBytes);
+                        if (tlsContext.getTalkingConnectionEndType() == ConnectionEndType.SERVER) {
+                            tlsContext.setServerEcPublicKey(publicKeyPoint); // TODO
+                                                                             // this
+                                                                             // needs
+                                                                             // to
+                                                                             // be
+                                                                             // a
+                                                                             // new
+                                                                             // field
+                                                                             // in
+                                                                             // the
+                                                                             // context
+                        } else {
+                            tlsContext.setClientEcPublicKey(publicKeyPoint); // TODO
+                                                                             // this
+                                                                             // needs
+                                                                             // to
+                                                                             // be
+                                                                             // a
+                                                                             // new
+                                                                             // field
+                                                                             // in
+                                                                             // the
+                                                                             // context
+                        }
+                    } else {
+                        throw new UnsupportedOperationException(
+                                "We currently do only support EC raw public keys. Sorry...");
+                    }
+
+                    asn1Stream.close();
+                } catch (Exception E) {
+                    LOGGER.warn("Could read RAW PublicKey. Not adjusting context", E);
+
                 }
-            } catch (IOException ex) {
-                throw new AdjustmentException("Could not concatenate certificates bytes", ex);
-            }
-            cert = parseCertificate(certificatesLength, stream.toByteArray());
-        } else {
-            cert = parseCertificate(message.getCertificatesListLength().getValue(), message.getCertificatesListBytes()
-                    .getValue());
-        }
-        if (tlsContext.getTalkingConnectionEndType() == ConnectionEndType.CLIENT) {
-            LOGGER.debug("Setting ClientCertificate in Context");
-            tlsContext.setClientCertificate(cert);
-        } else {
-            LOGGER.debug("Setting ServerCertificate in Context");
-            tlsContext.setServerCertificate(cert);
-        }
-        if (message.getCertificateKeyPair() != null) {
-            LOGGER.debug("Found a certificate key pair. Adjusting in context");
-            message.getCertificateKeyPair().adjustInContext(tlsContext, tlsContext.getTalkingConnectionEndType());
-        } else if (cert != null) {
-            if (cert.isEmpty()) {
-                LOGGER.debug("Certificate is empty - no adjustments");
-            } else {
-                LOGGER.debug("No CertificatekeyPair found, creating new one");
-                CertificateKeyPair pair = new CertificateKeyPair(cert);
-                message.setCertificateKeyPair(pair);
-                message.getCertificateKeyPair().adjustInContext(tlsContext, tlsContext.getTalkingConnectionEndType());
-            }
+                break;
+            case X509:
+                LOGGER.debug("Adjusting context for x509 ceritifate message");
+                Certificate cert;
+                if (tlsContext.getChooser().getSelectedProtocolVersion().isTLS13()) {
+                    ByteArrayOutputStream stream = new ByteArrayOutputStream();
+                    int certificatesLength = 0;
+                    try {
+                        for (CertificatePair pair : message.getCertificatesList()) {
+                            stream.write(ArrayConverter.intToBytes(pair.getCertificateLength().getValue(),
+                                    HandshakeByteLength.CERTIFICATE_LENGTH));
+                            stream.write(pair.getCertificate().getValue());
+                            certificatesLength += pair.getCertificateLength().getValue()
+                                    + HandshakeByteLength.CERTIFICATE_LENGTH;
+                        }
+                    } catch (IOException ex) {
+                        throw new AdjustmentException("Could not concatenate certificates bytes", ex);
+                    }
+                    cert = parseCertificate(certificatesLength, stream.toByteArray());
+                } else {
+                    cert = parseCertificate(message.getCertificatesListLength().getValue(), message
+                            .getCertificatesListBytes().getValue());
+                }
+                if (tlsContext.getTalkingConnectionEndType() == ConnectionEndType.CLIENT) {
+                    LOGGER.debug("Setting ClientCertificate in Context");
+                    tlsContext.setClientCertificate(cert);
+                } else {
+                    LOGGER.debug("Setting ServerCertificate in Context");
+                    tlsContext.setServerCertificate(cert);
+                }
+                if (message.getCertificateKeyPair() != null) {
+                    LOGGER.debug("Found a certificate key pair. Adjusting in context");
+                    message.getCertificateKeyPair().adjustInContext(tlsContext,
+                            tlsContext.getTalkingConnectionEndType());
+                } else if (cert != null) {
+                    if (cert.isEmpty()) {
+                        LOGGER.debug("Certificate is empty - no adjustments");
+                    } else {
+                        LOGGER.debug("No CertificatekeyPair found, creating new one");
+                        CertificateKeyPair pair = new CertificateKeyPair(cert);
+                        message.setCertificateKeyPair(pair);
+                        message.getCertificateKeyPair().adjustInContext(tlsContext,
+                                tlsContext.getTalkingConnectionEndType());
+                    }
 
-        } else {
-            LOGGER.debug("Ceritificate not parseable - no adjustments");
-        }
+                } else {
+                    LOGGER.debug("Ceritificate not parseable - no adjustments");
+                }
 
-        if (tlsContext.getChooser().getSelectedProtocolVersion().isTLS13()) {
-            adjustExtensions(message);
+                if (tlsContext.getChooser().getSelectedProtocolVersion().isTLS13()) {
+                    adjustExtensions(message);
+                }
+                break;
+            default:
+                throw new UnsupportedOperationException("Unsupported CertificateType!");
         }
+
     }
 
     private Certificate parseCertificate(int lengthBytes, byte[] bytesToParse) {

TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/protocol/handler/CertificateRequestHandler.java

@@ -8,6 +8,7 @@
  */
 package de.rub.nds.tlsattacker.core.protocol.handler;
 
+import com.google.common.collect.Sets;
 import de.rub.nds.modifiablevariable.util.ArrayConverter;
 import de.rub.nds.tlsattacker.core.constants.ClientCertificateType;
 import de.rub.nds.tlsattacker.core.constants.SignatureAndHashAlgorithm;
@@ -16,6 +17,7 @@
 import de.rub.nds.tlsattacker.core.protocol.preparator.CertificateRequestPreparator;
 import de.rub.nds.tlsattacker.core.protocol.serializer.CertificateRequestSerializer;
 import de.rub.nds.tlsattacker.core.state.TlsContext;
+import java.util.Collections;
 import java.util.LinkedList;
 import java.util.List;
 import org.apache.logging.log4j.LogManager;
@@ -49,6 +51,7 @@ public void adjustTLSContext(CertificateRequestMessage message) {
         adjustClientCertificateTypes(message);
         adjustDistinguishedNames(message);
         adjustServerSupportedSignatureAndHashAlgorithms(message);
+        adjustSelectedSignatureAndHashAlgorithm();
     }
 
     private void adjustServerSupportedSignatureAndHashAlgorithms(CertificateRequestMessage message) {
@@ -106,4 +109,19 @@ private List<SignatureAndHashAlgorithm> convertSignatureAndHashAlgorithms(byte[]
         }
         return list;
     }
+
+    private void adjustSelectedSignatureAndHashAlgorithm() {
+        if (Collections.disjoint(tlsContext.getChooser().getClientSupportedSignatureAndHashAlgorithms(), tlsContext
+                .getChooser().getServerSupportedSignatureAndHashAlgorithms())) {
+            LOGGER.warn("Client and Server have no signature and hash algorithm in common");
+        } else {
+            Sets.SetView<SignatureAndHashAlgorithm> intersection = Sets.intersection(
+                    Sets.newHashSet(tlsContext.getChooser().getClientSupportedSignatureAndHashAlgorithms()),
+                    Sets.newHashSet(tlsContext.getChooser().getServerSupportedSignatureAndHashAlgorithms()));
+            SignatureAndHashAlgorithm algo = (SignatureAndHashAlgorithm) intersection.toArray()[0];
+            tlsContext.setSelectedSignatureAndHashAlgorithm(algo);
+            LOGGER.debug("Adjusting selected signature and hash algorithm to: " + algo.name());
+
+        }
+    }
 }