Replaced pycrypto with pycryptodome

pyrdp/mitm/SecurityMITM.py

@@ -5,6 +5,7 @@
 #
 
 from logging import LoggerAdapter
+from Crypto.PublicKey.RSA import RsaKey
 
 from pyrdp.core import decodeUTF16LE
 from pyrdp.enum import ClientInfoFlags, PlayerPDUType
@@ -14,6 +15,7 @@
 from pyrdp.parser import ClientInfoParser
 from pyrdp.pdu import SecurityExchangePDU
 from pyrdp.recording import Recorder
+from pyrdp.security.crypto import RSA
 
 
 class SecurityMITM:
@@ -52,7 +54,7 @@ def onSecurityExchange(self, pdu: SecurityExchangePDU):
         Set the security settings' client random from the security exchange.
         :param pdu: the security exchange
         """
-        clientRandom = self.state.rc4RSAKey.decrypt(pdu.clientRandom[:: -1])[:: -1]
+        clientRandom = RSA(self.state.rc4RSAKey).decrypt(pdu.clientRandom[:: -1])[:: -1]
         self.state.securitySettings.setClientRandom(clientRandom)
 
         self.server.sendSecurityExchange(self.state.securitySettings.encryptClientRandom())

pyrdp/parser/rdp/connection.py

@@ -363,7 +363,7 @@ def parseProprietaryCertificate(self, stream: BytesIO) -> ProprietaryCertificate
 
         return ProprietaryCertificate(signatureAlgorithmID, keyAlgorithmID, publicKeyType, publicKey, signatureType, signature, padding)
 
-    def parsePublicKey(self, data: bytes) -> RSA.pubkey.pubkey:
+    def parsePublicKey(self, data: bytes) -> RSA.RsaKey:
         stream = BytesIO(data)
         _magic = stream.read(4)
         keyLength = Uint32LE.unpack(stream)
@@ -475,7 +475,7 @@ def writeProprietaryCertificate(self, stream: BytesIO, cert: ProprietaryCertific
         stream.write(cert.signature)
         stream.write(b"\x00" * 8)
 
-    def writePublicKey(self, publicKey: RSA.pubkey.pubkey) -> bytes:
+    def writePublicKey(self, publicKey: RSA.RsaKey) -> bytes:
         modulus = publicKey.n
         publicExponent = publicKey.e
 

pyrdp/pdu/rdp/connection.py

@@ -7,7 +7,7 @@
 import socket
 from typing import Optional
 
-from Crypto.PublicKey import RSA
+from Crypto.PublicKey.RSA import RsaKey
 
 from pyrdp.enum import ChannelOption, ConnectionDataType, RDPVersion, ServerCertificateType, EncryptionLevel
 from pyrdp.enum.rdp import ClientCapabilityFlag, ColorDepth, ConnectionType, DesktopOrientation, EncryptionMethod, \
@@ -161,14 +161,14 @@ def generate(serverSelectedProtocol: NegotiationProtocols,
 
 
 class ServerCertificate:
-    def __init__(self, certificateType: ServerCertificateType, publicKey: RSA.pubkey.pubkey, signature: bytes):
+    def __init__(self, certificateType: ServerCertificateType, publicKey: RsaKey, signature: bytes):
         self.type = certificateType
         self.publicKey = publicKey
         self.signature = signature
 
 
 class ProprietaryCertificate(ServerCertificate):
-    def __init__(self, signatureAlgorithmID: int, keyAlgorithmID: int, publicKeyType: int, publicKey: RSA.pubkey.pubkey, signatureType: int, signature: bytes, padding: bytes):
+    def __init__(self, signatureAlgorithmID: int, keyAlgorithmID: int, publicKeyType: int, publicKey: RsaKey, signatureType: int, signature: bytes, padding: bytes):
         ServerCertificate.__init__(self, ServerCertificateType.PROPRIETARY, publicKey, signature)
         self.signatureAlgorithmID = signatureAlgorithmID
         self.keyAlgorithmID = keyAlgorithmID

pyrdp/security/crypto.py

@@ -4,6 +4,9 @@
 # Licensed under the GPLv3 or later.
 #
 
+from Crypto.PublicKey.RSA import RsaKey
+from Crypto.Util.number import bytes_to_long, long_to_bytes
+
 from pyrdp.security import rc4
 from pyrdp.security.key import macData, macSaltedData, generateKeys, updateKey
 from pyrdp.enum import EncryptionMethod
@@ -12,6 +15,39 @@
 Cryptographic utility functions
 """
 
+# Adapted from https://github.com/dlitz/pycrypto/blob/master/lib/Crypto/PublicKey/_slowmath.py
+class RSA:
+    """
+    Class for encrypting or decrypting data with RSA
+    Not meant to be a safe implementation. We only need raw RSA without padding.
+    """
+
+    def __init__(self, key: RsaKey):
+        self.key = key
+
+    def encrypt(self, plaintext: bytes) -> bytes:
+        m = bytes_to_long(plaintext)
+        ciphertext = pow(m, self.key.e, self.key.n)
+        return long_to_bytes(ciphertext)
+
+    def decrypt(self, ciphertext: bytes) -> bytes:
+        c = bytes_to_long(ciphertext)
+
+        # compute c**d (mod n)
+        if (hasattr(self.key, 'p') and hasattr(self.key, 'q') and hasattr(self.key, 'u')):
+            m1 = pow(c, self.key.d % (self.key.p - 1), self.key.p)
+            m2 = pow(c, self.key.d % (self.key.q - 1), self.key.q)
+            h = m2 - m1
+
+            if (h < 0):
+                h = h + self.key.q
+            h = h * self.key.u % self.key.q
+
+            plaintext = h * self.key.p + m1
+        else:
+            plaintext = pow(c, self.key.d, self.key.n)
+
+        return long_to_bytes(plaintext)
 
 class RC4:
     """

pyrdp/security/settings.py

@@ -5,12 +5,12 @@
 #
 
 import Crypto.Random
-from Crypto.PublicKey import RSA
+from Crypto.PublicKey.RSA import RsaKey
 
 from pyrdp.core import ObservedBy, Observer, Subject
 from pyrdp.enum import EncryptionMethod
 from pyrdp.exceptions import StateError
-from pyrdp.security.crypto import RC4Crypter
+from pyrdp.security.crypto import RC4Crypter, RSA
 
 
 class SecuritySettingsObserver(Observer):
@@ -67,8 +67,9 @@ def encryptClientRandom(self) -> bytes:
         """
         Encrypt the client random using the public key.
         """
-        # Client random is stored as little-endian but crypto functions expect it to be in big-endian format.
-        return self.serverPublicKey.encrypt(self.clientRandom[:: -1], 0)[0][:: -1]
+        # plaintext is stored as little-endian but crypto functions expect it to be in big-endian format.
+        return RSA(self.serverPublicKey).encrypt(self.clientRandom[:: -1])[:: -1]
+
 
     def setEncryptionMethod(self, encryptionMethod: EncryptionMethod):
         """
@@ -77,7 +78,7 @@ def setEncryptionMethod(self, encryptionMethod: EncryptionMethod):
         """
         self.encryptionMethod = encryptionMethod
 
-    def setServerPublicKey(self, serverPublicKey: RSA.pubkey.pubkey):
+    def setServerPublicKey(self, serverPublicKey: RsaKey):
         """
         Set the server's public key.
         :param serverPublicKey: the server's public key.

setup.py

@@ -32,7 +32,7 @@
         'names',
         'notify2',
         'pyasn1',
-        'pycrypto',
+        'pycryptodome',
         'pyopenssl',
         'PySide2',
         'pytz',