1 // Transport Security Layer (TLS)
2 // Copyright (c) 2003-2004 Carlos Guzman Alvarez
5 // Permission is hereby granted, free of charge, to any person obtaining
6 // a copy of this software and associated documentation files (the
7 // "Software"), to deal in the Software without restriction, including
8 // without limitation the rights to use, copy, modify, merge, publish,
9 // distribute, sublicense, and/or sell copies of the Software, and to
10 // permit persons to whom the Software is furnished to do so, subject to
11 // the following conditions:
13 // The above copyright notice and this permission notice shall be
14 // included in all copies or substantial portions of the Software.
16 // THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
17 // EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
18 // MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
19 // NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
20 // LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
21 // OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
22 // WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
27 using System
.Security
.Cryptography
;
28 using System
.Security
.Cryptography
.X509Certificates
;
30 namespace Mono
.Security
.Protocol
.Tls
.Handshake
.Server
32 internal class TlsClientKeyExchange
: HandshakeMessage
36 public TlsClientKeyExchange(Context context
, byte[] buffer
) :
38 HandshakeType
.ClientKeyExchange
,
45 #region Protected Methods
47 protected override void ProcessAsSsl3()
49 AsymmetricAlgorithm privKey
= null;
50 ServerContext context
= (ServerContext
)this.Context
;
52 // Select the private key information
53 privKey
= context
.SslStream
.RaisePrivateKeySelection(
54 new X509Certificate(context
.ServerSettings
.Certificates
[0].RawData
),
59 throw new TlsException(AlertDescription
.UserCancelled
, "Server certificate Private Key unavailable.");
62 // Read client premaster secret
63 byte[] clientSecret
= this.ReadBytes((int)this.Length
);
65 // Decrypt premaster secret
66 RSAPKCS1KeyExchangeDeformatter deformatter
= new RSAPKCS1KeyExchangeDeformatter(privKey
);
68 byte[] preMasterSecret
= deformatter
.DecryptKeyExchange(clientSecret
);
70 // Create master secret
71 this.Context
.Cipher
.ComputeMasterSecret(preMasterSecret
);
74 this.Context
.Cipher
.ComputeKeys();
76 // Initialize Cipher Suite
77 this.Context
.Cipher
.InitializeCipher();
80 protected override void ProcessAsTls1()
82 AsymmetricAlgorithm privKey
= null;
83 ServerContext context
= (ServerContext
)this.Context
;
85 // Select the private key information
86 // Select the private key information
87 privKey
= context
.SslStream
.RaisePrivateKeySelection(
88 new X509Certificate(context
.ServerSettings
.Certificates
[0].RawData
),
93 throw new TlsException(AlertDescription
.UserCancelled
, "Server certificate Private Key unavailable.");
96 // Read client premaster secret
97 byte[] clientSecret
= this.ReadBytes(this.ReadInt16());
99 // Decrypt premaster secret
100 RSAPKCS1KeyExchangeDeformatter deformatter
= new RSAPKCS1KeyExchangeDeformatter(privKey
);
102 byte[] preMasterSecret
= deformatter
.DecryptKeyExchange(clientSecret
);
104 // Create master secret
105 this.Context
.Cipher
.ComputeMasterSecret(preMasterSecret
);
108 this.Context
.Cipher
.ComputeKeys();
110 // Initialize Cipher Suite
111 this.Context
.Cipher
.InitializeCipher();