510Connectbot: src/com/trilead/ssh2/crypto/dh/DhGroupExchange.java annotate

annotate src/com/trilead/ssh2/crypto/dh/DhGroupExchange.java @ 0:0ce5cc452d02

initial version

author	Carl Byington <carl@five-ten-sg.com>
date	Thu, 22 May 2014 10:41:19 -0700
parents
children

rev	line source
0 0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	1
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	2 package com.trilead.ssh2.crypto.dh;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	3
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	4 import java.math.BigInteger;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	5 import java.security.SecureRandom;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	6
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	7 import com.trilead.ssh2.DHGexParameters;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	8 import com.trilead.ssh2.crypto.digest.HashForSSH2Types;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	9
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	10
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	11 /**
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	12 * DhGroupExchange.
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	13 *
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	14 * @author Christian Plattner, plattner@trilead.com
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	15 * @version $Id: DhGroupExchange.java,v 1.1 2007/10/15 12:49:57 cplattne Exp $
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	16 */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	17 public class DhGroupExchange {
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	18 /* Given by the standard */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	19
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	20 private BigInteger p;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	21 private BigInteger g;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	22
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	23 /* Client public and private */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	24
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	25 private BigInteger e;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	26 private BigInteger x;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	27
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	28 /* Server public */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	29
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	30 private BigInteger f;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	31
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	32 /* Shared secret */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	33
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	34 private BigInteger k;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	35
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	36 public DhGroupExchange(BigInteger p, BigInteger g) {
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	37 this.p = p;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	38 this.g = g;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	39 }
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	40
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	41 public void init(SecureRandom rnd) {
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	42 k = null;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	43 x = new BigInteger(p.bitLength() - 1, rnd);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	44 e = g.modPow(x, p);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	45 }
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	46
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	47 /**
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	48 * @return Returns the e.
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	49 */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	50 public BigInteger getE() {
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	51 if (e == null)
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	52 throw new IllegalStateException("Not initialized!");
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	53
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	54 return e;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	55 }
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	56
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	57 /**
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	58 * @return Returns the shared secret k.
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	59 */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	60 public BigInteger getK() {
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	61 if (k == null)
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	62 throw new IllegalStateException("Shared secret not yet known, need f first!");
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	63
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	64 return k;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	65 }
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	66
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	67 /**
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	68 * Sets f and calculates the shared secret.
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	69 */
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	70 public void setF(BigInteger f) {
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	71 if (e == null)
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	72 throw new IllegalStateException("Not initialized!");
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	73
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	74 BigInteger zero = BigInteger.valueOf(0);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	75
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	76 if (zero.compareTo(f) >= 0 \|\| p.compareTo(f) <= 0)
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	77 throw new IllegalArgumentException("Invalid f specified!");
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	78
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	79 this.f = f;
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	80 this.k = f.modPow(x, p);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	81 }
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	82
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	83 public byte[] calculateH(String hashAlgo, byte[] clientversion, byte[] serverversion,
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	84 byte[] clientKexPayload, byte[] serverKexPayload, byte[] hostKey, DHGexParameters para) {
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	85 HashForSSH2Types hash = new HashForSSH2Types(hashAlgo);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	86 hash.updateByteString(clientversion);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	87 hash.updateByteString(serverversion);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	88 hash.updateByteString(clientKexPayload);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	89 hash.updateByteString(serverKexPayload);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	90 hash.updateByteString(hostKey);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	91
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	92 if (para.getMin_group_len() > 0)
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	93 hash.updateUINT32(para.getMin_group_len());
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	94
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	95 hash.updateUINT32(para.getPref_group_len());
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	96
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	97 if (para.getMax_group_len() > 0)
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	98 hash.updateUINT32(para.getMax_group_len());
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	99
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	100 hash.updateBigInt(p);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	101 hash.updateBigInt(g);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	102 hash.updateBigInt(e);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	103 hash.updateBigInt(f);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	104 hash.updateBigInt(k);
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	105 return hash.getDigest();
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	106 }
0ce5cc452d02 initial version Carl Byington <carl@five-ten-sg.com> parents: diff changeset	107 }

Mercurial > 510Connectbot

annotate src/com/trilead/ssh2/crypto/dh/DhGroupExchange.java @ 0:0ce5cc452d02