1 /* Transport Security Layer (TLS)
2 * Copyright (c) 2003-2004 Carlos Guzman Alvarez
4 * Permission is hereby granted, free of charge, to any person
5 * obtaining a copy of this software and associated documentation
6 * files (the "Software"), to deal in the Software without restriction,
7 * including without limitation the rights to use, copy, modify, merge,
8 * publish, distribute, sublicense, and/or sell copies of the Software,
9 * and to permit persons to whom the Software is furnished to do so,
10 * subject to the following conditions:
12 * The above copyright notice and this permission notice shall be included
13 * in all copies or substantial portions of the Software.
15 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
16 * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES
17 * OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
18 * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
19 * HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
20 * WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
22 * DEALINGS IN THE SOFTWARE.
26 using System.Security.Cryptography;
28 using Mono.Security.Cryptography;
29 using Mono.Security.X509;
31 namespace Mono.Security.Protocol.Tls.Handshake.Client
33 internal class TlsServerKeyExchange : TlsHandshakeMessage
37 private RSAParameters rsaParams;
38 private byte[] signedParams;
44 public TlsServerKeyExchange(Context context, byte[] buffer)
45 : base(context, TlsHandshakeType.ServerKeyExchange, buffer)
47 this.verifySignature();
54 public override void Update()
58 this.Context.ServerSettings.ServerKeyExchange = true;
59 this.Context.ServerSettings.RsaParameters = this.rsaParams;
60 this.Context.ServerSettings.SignedParams = this.signedParams;
65 #region Protected Methods
67 protected override void ProcessAsSsl3()
72 protected override void ProcessAsTls1()
74 this.rsaParams = new RSAParameters();
77 this.rsaParams.Modulus = this.ReadBytes(this.ReadInt16());
80 this.rsaParams.Exponent = this.ReadBytes(this.ReadInt16());
83 this.signedParams = this.ReadBytes(this.ReadInt16());
88 #region Private Methods
90 private void verifySignature()
92 MD5SHA1 hash = new MD5SHA1();
94 // Calculate size of server params
95 int size = rsaParams.Modulus.Length + rsaParams.Exponent.Length + 4;
97 // Create server params array
98 TlsStream stream = new TlsStream();
100 stream.Write(this.Context.RandomCS);
101 stream.Write(this.ToArray(), 0, size);
103 hash.ComputeHash(stream.ToArray());
107 bool isValidSignature = hash.VerifySignature(
108 this.Context.Cipher.CertificateRSA(),
111 if (!isValidSignature)
113 throw this.Context.CreateException("Data was not signed with the server certificate.");