add all
This commit is contained in:
87
Packages/com.tivadar.best.http/Runtime/3rdParty/BouncyCastle/tls/SrpTlsClient.cs
vendored
Normal file
87
Packages/com.tivadar.best.http/Runtime/3rdParty/BouncyCastle/tls/SrpTlsClient.cs
vendored
Normal file
@@ -0,0 +1,87 @@
|
||||
#if !BESTHTTP_DISABLE_ALTERNATE_SSL && (!UNITY_WEBGL || UNITY_EDITOR)
|
||||
#pragma warning disable
|
||||
using System;
|
||||
using System.Collections.Generic;
|
||||
using System.IO;
|
||||
|
||||
using Best.HTTP.SecureProtocol.Org.BouncyCastle.Tls.Crypto;
|
||||
|
||||
namespace Best.HTTP.SecureProtocol.Org.BouncyCastle.Tls
|
||||
{
|
||||
public class SrpTlsClient
|
||||
: AbstractTlsClient
|
||||
{
|
||||
private static readonly int[] DefaultCipherSuites = new int[]
|
||||
{
|
||||
CipherSuite.TLS_SRP_SHA_RSA_WITH_AES_128_CBC_SHA
|
||||
};
|
||||
|
||||
protected readonly TlsSrpIdentity m_srpIdentity;
|
||||
|
||||
public SrpTlsClient(TlsCrypto crypto, byte[] identity, byte[] password)
|
||||
: this(crypto, new BasicTlsSrpIdentity(identity, password))
|
||||
{
|
||||
}
|
||||
|
||||
public SrpTlsClient(TlsCrypto crypto, TlsSrpIdentity srpIdentity)
|
||||
: base(crypto)
|
||||
{
|
||||
this.m_srpIdentity = srpIdentity;
|
||||
}
|
||||
|
||||
protected override int[] GetSupportedCipherSuites()
|
||||
{
|
||||
return TlsUtilities.GetSupportedCipherSuites(Crypto, DefaultCipherSuites);
|
||||
}
|
||||
|
||||
protected override ProtocolVersion[] GetSupportedVersions()
|
||||
{
|
||||
return ProtocolVersion.TLSv12.Only();
|
||||
}
|
||||
|
||||
protected virtual bool RequireSrpServerExtension
|
||||
{
|
||||
// No explicit guidance in RFC 5054; by default an (empty) extension from server is optional
|
||||
get { return false; }
|
||||
}
|
||||
|
||||
/// <exception cref="IOException"/>
|
||||
public override IDictionary<int, byte[]> GetClientExtensions()
|
||||
{
|
||||
var clientExtensions = TlsExtensionsUtilities.EnsureExtensionsInitialised(
|
||||
base.GetClientExtensions());
|
||||
TlsSrpUtilities.AddSrpExtension(clientExtensions, m_srpIdentity.GetSrpIdentity());
|
||||
return clientExtensions;
|
||||
}
|
||||
|
||||
/// <exception cref="IOException"/>
|
||||
public override void ProcessServerExtensions(IDictionary<int, byte[]> serverExtensions)
|
||||
{
|
||||
if (!TlsUtilities.HasExpectedEmptyExtensionData(serverExtensions, ExtensionType.srp,
|
||||
AlertDescription.illegal_parameter))
|
||||
{
|
||||
if (RequireSrpServerExtension)
|
||||
throw new TlsFatalAlert(AlertDescription.illegal_parameter);
|
||||
}
|
||||
|
||||
base.ProcessServerExtensions(serverExtensions);
|
||||
}
|
||||
|
||||
public override TlsSrpIdentity GetSrpIdentity()
|
||||
{
|
||||
return m_srpIdentity;
|
||||
}
|
||||
|
||||
/// <exception cref="IOException"/>
|
||||
public override TlsAuthentication GetAuthentication()
|
||||
{
|
||||
/*
|
||||
* Note: This method is not called unless a server certificate is sent, which may be the
|
||||
* case e.g. for SRP_DSS or SRP_RSA key exchange.
|
||||
*/
|
||||
throw new TlsFatalAlert(AlertDescription.internal_error);
|
||||
}
|
||||
}
|
||||
}
|
||||
#pragma warning restore
|
||||
#endif
|
||||
Reference in New Issue
Block a user