mirror of https://github.com/ctz/rustls
89 lines
2.6 KiB
Rust
89 lines
2.6 KiB
Rust
use num_bigint::BigUint;
|
|
use rustls::crypto::{
|
|
ActiveKeyExchange, CipherSuiteCommon, KeyExchangeAlgorithm, SharedSecret, SupportedKxGroup,
|
|
};
|
|
use rustls::ffdhe_groups::FfdheGroup;
|
|
use rustls::{CipherSuite, NamedGroup, SupportedCipherSuite, Tls12CipherSuite};
|
|
|
|
/// The (test-only) TLS1.2 ciphersuite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
|
|
pub static TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: SupportedCipherSuite =
|
|
SupportedCipherSuite::Tls12(&TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256);
|
|
|
|
#[derive(Debug)]
|
|
pub struct FfdheKxGroup(pub NamedGroup);
|
|
|
|
impl SupportedKxGroup for FfdheKxGroup {
|
|
fn start(&self) -> Result<Box<dyn ActiveKeyExchange>, rustls::Error> {
|
|
let mut x = vec![0; 64];
|
|
rustls::crypto::ring::default_provider()
|
|
.secure_random
|
|
.fill(&mut x)?;
|
|
let x = BigUint::from_bytes_be(&x);
|
|
|
|
let group = FfdheGroup::from_named_group(self.0).unwrap();
|
|
let p = BigUint::from_bytes_be(group.p);
|
|
let g = BigUint::from_bytes_be(group.g);
|
|
|
|
let x_pub = g.modpow(&x, &p);
|
|
let x_pub = to_bytes_be_with_len(x_pub, group.p.len());
|
|
|
|
Ok(Box::new(ActiveFfdheKx {
|
|
x_pub,
|
|
x,
|
|
p,
|
|
group,
|
|
named_group: self.0,
|
|
}))
|
|
}
|
|
|
|
fn name(&self) -> NamedGroup {
|
|
self.0
|
|
}
|
|
}
|
|
|
|
static TLS12_DHE_RSA_WITH_AES_128_GCM_SHA256: Tls12CipherSuite =
|
|
match &rustls::crypto::ring::cipher_suite::TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 {
|
|
SupportedCipherSuite::Tls12(provider) => Tls12CipherSuite {
|
|
common: CipherSuiteCommon {
|
|
suite: CipherSuite::TLS_DHE_RSA_WITH_AES_128_GCM_SHA256,
|
|
..provider.common
|
|
},
|
|
kx: KeyExchangeAlgorithm::DHE,
|
|
..**provider
|
|
},
|
|
_ => unreachable!(),
|
|
};
|
|
|
|
struct ActiveFfdheKx {
|
|
x_pub: Vec<u8>,
|
|
x: BigUint,
|
|
p: BigUint,
|
|
group: FfdheGroup<'static>,
|
|
named_group: NamedGroup,
|
|
}
|
|
|
|
impl ActiveKeyExchange for ActiveFfdheKx {
|
|
fn complete(self: Box<Self>, peer_pub_key: &[u8]) -> Result<SharedSecret, rustls::Error> {
|
|
let peer_pub = BigUint::from_bytes_be(peer_pub_key);
|
|
let secret = peer_pub.modpow(&self.x, &self.p);
|
|
let secret = to_bytes_be_with_len(secret, self.group.p.len());
|
|
|
|
Ok(SharedSecret::from(&secret[..]))
|
|
}
|
|
|
|
fn pub_key(&self) -> &[u8] {
|
|
&self.x_pub
|
|
}
|
|
|
|
fn group(&self) -> NamedGroup {
|
|
self.named_group
|
|
}
|
|
}
|
|
|
|
fn to_bytes_be_with_len(n: BigUint, len_bytes: usize) -> Vec<u8> {
|
|
let mut bytes = n.to_bytes_le();
|
|
bytes.resize(len_bytes, 0);
|
|
bytes.reverse();
|
|
bytes
|
|
}
|