Skip to content
This repository has been archived by the owner on Jan 23, 2023. It is now read-only.
/ corefx Public archive

Commit

Permalink
add initial implementation for server side SNI support
Browse files Browse the repository at this point in the history
  • Loading branch information
@krwq
krwq committed Mar 26, 2018
1 parent e75c019 commit ba4b048
Show file tree
Hide file tree
Showing 15 changed files with 451 additions and 7 deletions.
35 changes: 34 additions & 1 deletion src/Common/tests/System/Net/VirtualNetwork/VirtualNetwork.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,16 +10,29 @@ namespace System.Net.Test.Common
{
public class VirtualNetwork
{
public class VirtualNetworkConnectionBroken : Exception
{
public VirtualNetworkConnectionBroken() : base("Connection broken") { }
}

private readonly int WaitForReadDataTimeoutMilliseconds = 30 * 1000;

private readonly ConcurrentQueue<byte[]> _clientWriteQueue = new ConcurrentQueue<byte[]>();
private readonly ConcurrentQueue<byte[]> _serverWriteQueue = new ConcurrentQueue<byte[]>();

private readonly SemaphoreSlim _clientDataAvailable = new SemaphoreSlim(0);
private readonly SemaphoreSlim _serverDataAvailable = new SemaphoreSlim(0);

public bool DisableConnectionBreaking { get; set; } = false;
private bool _connectionBroken = false;

public void ReadFrame(bool server, out byte[] buffer)
{
if (_connectionBroken)
{
throw new VirtualNetworkConnectionBroken();
}

SemaphoreSlim semaphore;
ConcurrentQueue<byte[]> packetQueue;

Expand All @@ -39,6 +52,11 @@ public void ReadFrame(bool server, out byte[] buffer)
throw new TimeoutException("VirtualNetwork: Timeout reading the next frame.");
}

if (_connectionBroken)
{
throw new VirtualNetworkConnectionBroken();
}

bool dequeueSucceeded = false;
int remainingTries = 3;
int backOffDelayMilliseconds = 2;
Expand All @@ -62,6 +80,11 @@ public void ReadFrame(bool server, out byte[] buffer)

public void WriteFrame(bool server, byte[] buffer)
{
if (_connectionBroken)
{
throw new VirtualNetworkConnectionBroken();
}

SemaphoreSlim semaphore;
ConcurrentQueue<byte[]> packetQueue;

Expand All @@ -82,5 +105,15 @@ public void WriteFrame(bool server, byte[] buffer)
packetQueue.Enqueue(innerBuffer);
semaphore.Release();
}

public void BreakConnection()
{
if (!DisableConnectionBreaking)
{
_connectionBroken = true;
_serverDataAvailable.Release(1_000_000);
_clientDataAvailable.Release(1_000_000);
}
}
}
}
10 changes: 10 additions & 0 deletions src/Common/tests/System/Net/VirtualNetwork/VirtualNetworkStream.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -156,5 +156,15 @@ public override Task WriteAsync(byte[] buffer, int offset, int count, Cancellati

public override void EndWrite(IAsyncResult asyncResult) =>
TaskToApm.End(asyncResult);

protected override void Dispose(bool disposing)
{
if (disposing)
{
_network.BreakConnection();
}

base.Dispose(disposing);
}
}
}
3 changes: 3 additions & 0 deletions src/System.Net.Security/ref/System.Net.Security.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,8 @@ public enum EncryptionPolicy
RequireEncryption = 0,
}
public delegate System.Security.Cryptography.X509Certificates.X509Certificate LocalCertificateSelectionCallback(object sender, string targetHost, System.Security.Cryptography.X509Certificates.X509CertificateCollection localCertificates, System.Security.Cryptography.X509Certificates.X509Certificate remoteCertificate, string[] acceptableIssuers);
public delegate System.Security.Cryptography.X509Certificates.X509Certificate ServerCertificateSelectionCallback(object sender, string hostName);

public partial class NegotiateStream : AuthenticatedStream
{
public NegotiateStream(System.IO.Stream innerStream) : base(innerStream, false) { }
Expand Down Expand Up @@ -108,6 +110,7 @@ public class SslServerAuthenticationOptions
public X509RevocationMode CertificateRevocationCheckMode { get { throw null; } set { } }
public List<SslApplicationProtocol> ApplicationProtocols { get { throw null; } set { } }
public RemoteCertificateValidationCallback RemoteCertificateValidationCallback { get { throw null; } set { } }
public ServerCertificateSelectionCallback ServerCertificateSelectionCallback { get { throw null; } set { } }
public EncryptionPolicy EncryptionPolicy { get { throw null; } set { } }
}
public partial class SslClientAuthenticationOptions
Expand Down
1 change: 1 addition & 0 deletions src/System.Net.Security/src/PinvokeAnalyzerExceptionList.analyzerdata
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
schannel.dll!SslGetServerIdentity
1 change: 1 addition & 0 deletions src/System.Net.Security/src/System.Net.Security.csproj
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,6 +23,7 @@
<Compile Include="System\Net\FixedSizeReader.cs" />
<Compile Include="System\Net\HelperAsyncResults.cs" />
<Compile Include="System\Net\Logging\NetEventSource.cs" />
<Compile Include="System\Net\Security\SNIHelper.cs" />
<Compile Include="System\Net\Security\SslApplicationProtocol.cs" />
<Compile Include="System\Net\Security\SslAuthenticationOptions.cs" />
<Compile Include="System\Net\Security\SslClientAuthenticationOptions.cs" />
Expand Down
233 changes: 233 additions & 0 deletions src/System.Net.Security/src/System/Net/Security/SNIHelper.cs
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,233 @@
using System;
using System.Collections.Generic;
using System.IO;
using System.Linq;
using System.Text;
using System.Threading.Tasks;

namespace System.Net.Security
{
internal class SNIHelper
{
public static string GetServerName(byte[] clientHello)
{
return GetSniFromSslPlainText(clientHello);
}

// https://tools.ietf.org/html/rfc6101#section-5.2.1
// SSLPlainText structure:
// - ContentType (1 byte) => 0x16 is handshake
// - ProtocolVersion version (2 bytes)
// - uint16 length
// - opaque fragment[SSLPlaintext.length]
private static string GetSniFromSslPlainText(ReadOnlySpan<byte> sslPlainText)
{
// Is SSL 3 handshake? SSL 2 does not support extensions - skipping as well
if (sslPlainText.Length < 5 || sslPlainText[0] != 0x16)
return null;

ushort handshakeLength = ReadUint16(sslPlainText.Slice(3));
ReadOnlySpan<byte> sslHandshake = sslPlainText.Slice(5);

if (handshakeLength != sslHandshake.Length)
return null;

return GetSniFromSslHandshake(sslHandshake);
}

// https://tools.ietf.org/html/rfc6101#section-5.6
// Handshake structure:
// - HandshakeType msg_type (1 bytes) => 0x01 is client_hello
// - uint24 length
// - <msg_type> body
private static string GetSniFromSslHandshake(ReadOnlySpan<byte> sslHandshake)
{
// If not client hello then skip
if (sslHandshake.Length < 4 || sslHandshake[0] != 0x01)
return null;

int clientHelloLength = ReadUint24(sslHandshake.Slice(1));
ReadOnlySpan<byte> clientHello = sslHandshake.Slice(4);

if (clientHello.Length != clientHelloLength)
return null;

return GetSniFromClientHello(clientHello);
}

// 5.6.1.2. https://tools.ietf.org/html/rfc6101#section-5.6.1 - describes basic structure
// 2.1. https://www.ietf.org/rfc/rfc3546.txt - describes extended structure
// ClientHello structure:
// - ProtocolVersion client_version (2 bytes)
// - Random random (32 bytes => 4 bytes GMT unix timestamp + 28 bytes of random bytes)
// - SessionID session_id (opaque type of max size 32 => size fits in 1 byte)
// - CipherSuite cipher_suites (opaque type of max size 2^16-1 => size fits in 2 bytes)
// - CompressionMethod compression_methods (opaque type of max size 2^8-1 => size fits in 1 byte)
// - Extension client_hello_extension_list (opaque type of max size 2^16-1 => size fits in 2 bytes)
private static string GetSniFromClientHello(ReadOnlySpan<byte> clientHello)
{
// Skip ProtocolVersion and Random
ReadOnlySpan<byte> p = SkipBytes(clientHello, 34);

// Skip SessionID
p = SkipOpaqueType1(p);

// Skip cipher suites
p = SkipOpaqueType2(p);

// Skip compression methods
p = SkipOpaqueType1(p);

// is invalid structure or no extensions?
if (p.IsEmpty)
return null;

ushort extensionListLength = ReadUint16(p);
p = SkipBytes(p, 2);

if (extensionListLength != p.Length)
return null;

while (!p.IsEmpty)
{
string sni = GetSniFromExtension(p, out p);
if (sni != null)
return sni;
}

return null;
}

// 2.3. https://www.ietf.org/rfc/rfc3546.txt
// Extension structure:
// - ExtensionType extension_type (2 bytes) => 0x00 is server_name
// - opaque extension_data
private static string GetSniFromExtension(ReadOnlySpan<byte> extension, out ReadOnlySpan<byte> remainingBytes)
{
if (extension.Length < 2)
{
remainingBytes = ReadOnlySpan<byte>.Empty;
return null;
}

ushort extensionType = ReadUint16(extension);
ReadOnlySpan<byte> extensionData = extension.Slice(2);

if (extensionType == 0x00)
{
return GetSniFromServerNameList(extensionData, out remainingBytes);
}
else
{
remainingBytes = SkipOpaqueType2(extensionData);
return null;
}
}

// 3.1. https://www.ietf.org/rfc/rfc3546.txt
// ServerNameList structure:
// - ServerName server_name_list<1..2^16-1>
// ServerName structure:
// - NameType name_type (1 byte) => 0x00 is host_name
// - opaque HostName
// Per spec:
// If the hostname labels contain only US-ASCII characters, then the
// client MUST ensure that labels are separated only by the byte 0x2E,
// representing the dot character U+002E (requirement 1 in section 3.1
// of [IDNA] notwithstanding). If the server needs to match the HostName
// against names that contain non-US-ASCII characters, it MUST perform
// the conversion operation described in section 4 of [IDNA], treating
// the HostName as a "query string" (i.e. the AllowUnassigned flag MUST
// be set). Note that IDNA allows labels to be separated by any of the
// Unicode characters U+002E, U+3002, U+FF0E, and U+FF61, therefore
// servers MUST accept any of these characters as a label separator. If
// the server only needs to match the HostName against names containing
// exclusively ASCII characters, it MUST compare ASCII names case-
// insensitively.
private static string GetSniFromServerNameList(ReadOnlySpan<byte> serverNameListExtension, out ReadOnlySpan<byte> remainingBytes)
{
if (serverNameListExtension.Length < 2)
{
remainingBytes = ReadOnlySpan<byte>.Empty;
return null;
}

ushort serverNameListLength = ReadUint16(serverNameListExtension);
ReadOnlySpan<byte> serverNameList = serverNameListExtension.Slice(2);

if (serverNameListLength > serverNameList.Length)
{
remainingBytes = ReadOnlySpan<byte>.Empty;
return null;
}

remainingBytes = serverNameList.Slice(serverNameListLength);
ReadOnlySpan<byte> serverName = serverNameList.Slice(0, serverNameListLength);

if (serverName.Length < 3)
{
return null;
}

// -1 for hostNameType
int hostNameStructLength = ReadUint16(serverName) - 1;
byte hostNameType = serverName[2];
ReadOnlySpan<byte> hostNameStruct = serverName.Slice(3);

if (hostNameStructLength != hostNameStruct.Length || hostNameType != 0x00)
{
return null;
}

ushort hostNameLength = ReadUint16(hostNameStruct);
ReadOnlySpan<byte> hostName = hostNameStruct.Slice(2);

return Encoding.UTF8.GetString(hostName);
}

private static ushort ReadUint16(ReadOnlySpan<byte> bytes)
{
return (ushort)((bytes[0] << 8) | bytes[1]);
}

private static int ReadUint24(ReadOnlySpan<byte> bytes)
{
return (bytes[0] << 16) | (bytes[1] << 8) | bytes[2];
}

private static ReadOnlySpan<byte> SkipBytes(ReadOnlySpan<byte> bytes, int numberOfBytesToSkip)
{
if (numberOfBytesToSkip < bytes.Length)
return bytes.Slice(numberOfBytesToSkip);
else
return ReadOnlySpan<byte>.Empty;
}

// Opaque type is of structure:
// - length (minimum number of bytes to hold the max value)
// - data (length bytes)
// We will only use opaque bytes which are of max size: 255 (length = 1) or 2^16-1 (length = 2).
// We will call them SkipOpaqueType`length`
private static ReadOnlySpan<byte> SkipOpaqueType1(ReadOnlySpan<byte> bytes)
{
if (bytes.Length < 1)
return ReadOnlySpan<byte>.Empty;

byte length = bytes[0];
int totalBytes = 1 + length;

return SkipBytes(bytes, totalBytes);
}

private static ReadOnlySpan<byte> SkipOpaqueType2(ReadOnlySpan<byte> bytes)
{
if (bytes.Length < 2)
return ReadOnlySpan<byte>.Empty;

ushort length = ReadUint16(bytes);
int totalBytes = 2 + length;

return SkipBytes(bytes, totalBytes);
}
}
}
14 changes: 10 additions & 4 deletions src/System.Net.Security/src/System/Net/Security/SecureChannel.cs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -624,15 +624,22 @@ private bool AcquireClientCredentials(ref byte[] thumbPrint)
//
// Acquire Server Side Certificate information and set it on the class.
//
private bool AcquireServerCredentials(ref byte[] thumbPrint)
private bool AcquireServerCredentials(ref byte[] thumbPrint, byte[] clientHello)
{
if (NetEventSource.IsEnabled)
NetEventSource.Enter(this);

X509Certificate localCertificate = null;
bool cachedCred = false;

if (_sslAuthenticationOptions.CertSelectionDelegate != null)
if (_sslAuthenticationOptions.ServerCertSelectionDelegate != null)
{
string serverIdentity = SNIHelper.GetServerName(clientHello);
localCertificate = _sslAuthenticationOptions.ServerCertSelectionDelegate(serverIdentity);

}
// This probably never gets called as this is a client options delegate
else if (_sslAuthenticationOptions.CertSelectionDelegate != null)
{
X509CertificateCollection tempCollection = new X509CertificateCollection();
tempCollection.Add(_sslAuthenticationOptions.ServerCertificate);
Expand Down Expand Up @@ -744,7 +751,6 @@ private SecurityStatusPal GenerateToken(byte[] input, int offset, int count, ref
#if TRACE_VERBOSE
if (NetEventSource.IsEnabled) NetEventSource.Enter(this, $"_refreshCredentialNeeded = {_refreshCredentialNeeded}");
#endif

if (offset < 0 || offset > (input == null ? 0 : input.Length))
{
NetEventSource.Fail(this, "Argument 'offset' out of range.");
Expand Down Expand Up @@ -786,7 +792,7 @@ private SecurityStatusPal GenerateToken(byte[] input, int offset, int count, ref
if (_refreshCredentialNeeded)
{
cachedCreds = _sslAuthenticationOptions.IsServer
? AcquireServerCredentials(ref thumbPrint)
? AcquireServerCredentials(ref thumbPrint, input)
: AcquireClientCredentials(ref thumbPrint);
}

Expand Down

0 comments on commit ba4b048

Please sign in to comment.