2018-11-15 08:45:17 +01:00
|
|
|
|
/*
|
|
|
|
|
* Copyright (c) 2018 ETH Zürich, Educational Development and Technology (LET)
|
|
|
|
|
*
|
|
|
|
|
* This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
using System;
|
|
|
|
|
using System.IO;
|
|
|
|
|
using System.Text;
|
2018-11-28 15:43:30 +01:00
|
|
|
|
using SafeExamBrowser.Configuration.DataFormats.Cryptography;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
using SafeExamBrowser.Contracts.Configuration;
|
|
|
|
|
using SafeExamBrowser.Contracts.Configuration.Settings;
|
|
|
|
|
using SafeExamBrowser.Contracts.Logging;
|
|
|
|
|
|
|
|
|
|
namespace SafeExamBrowser.Configuration.DataFormats
|
|
|
|
|
{
|
2018-11-22 14:36:20 +01:00
|
|
|
|
public partial class BinaryFormat : IDataFormat
|
2018-11-15 08:45:17 +01:00
|
|
|
|
{
|
|
|
|
|
private const int PREFIX_LENGTH = 4;
|
|
|
|
|
|
|
|
|
|
private IDataCompressor compressor;
|
2018-11-28 15:43:30 +01:00
|
|
|
|
private IHashAlgorithm hashAlgorithm;
|
|
|
|
|
private IModuleLogger logger;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
|
2018-11-28 15:43:30 +01:00
|
|
|
|
public BinaryFormat(IDataCompressor compressor, IHashAlgorithm hashAlgorithm, IModuleLogger logger)
|
2018-11-15 08:45:17 +01:00
|
|
|
|
{
|
|
|
|
|
this.compressor = compressor;
|
2018-11-28 15:43:30 +01:00
|
|
|
|
this.hashAlgorithm = hashAlgorithm;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
this.logger = logger;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public bool CanParse(Stream data)
|
|
|
|
|
{
|
|
|
|
|
try
|
|
|
|
|
{
|
|
|
|
|
var longEnough = data.Length > PREFIX_LENGTH;
|
|
|
|
|
|
|
|
|
|
if (longEnough)
|
|
|
|
|
{
|
|
|
|
|
var prefix = ParsePrefix(data);
|
2018-11-22 14:36:20 +01:00
|
|
|
|
var success = TryDetermineFormat(prefix, out FormatType format);
|
2018-11-15 08:45:17 +01:00
|
|
|
|
|
|
|
|
|
logger.Debug($"'{data}' starting with '{prefix}' does {(success ? string.Empty : "not ")}match the binary format.");
|
|
|
|
|
|
|
|
|
|
return success;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logger.Debug($"'{data}' is not long enough ({data.Length} bytes) to match the binary format.");
|
|
|
|
|
}
|
|
|
|
|
catch (Exception e)
|
|
|
|
|
{
|
|
|
|
|
logger.Error($"Failed to determine whether '{data}' with {data.Length / 1000.0} KB data matches the binary format!", e);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
public LoadStatus TryParse(Stream data, Settings settings, string password = null, bool passwordIsHash = false)
|
2018-11-15 08:45:17 +01:00
|
|
|
|
{
|
2018-11-22 14:36:20 +01:00
|
|
|
|
var prefix = ParsePrefix(data);
|
|
|
|
|
var success = TryDetermineFormat(prefix, out FormatType format);
|
2018-11-15 08:45:17 +01:00
|
|
|
|
|
2018-11-22 14:36:20 +01:00
|
|
|
|
if (success)
|
|
|
|
|
{
|
|
|
|
|
if (compressor.IsCompressed(data))
|
|
|
|
|
{
|
|
|
|
|
data = compressor.Decompress(data);
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-28 15:43:30 +01:00
|
|
|
|
logger.Debug($"Attempting to parse '{data}' with format '{prefix}'...");
|
2018-11-30 14:50:28 +01:00
|
|
|
|
data = new SubStream(data, PREFIX_LENGTH, data.Length - PREFIX_LENGTH);
|
2018-11-22 14:36:20 +01:00
|
|
|
|
|
|
|
|
|
switch (format)
|
|
|
|
|
{
|
|
|
|
|
case FormatType.Password:
|
|
|
|
|
case FormatType.PasswordConfigureClient:
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return ParsePasswordBlock(data, format, settings, password, passwordIsHash);
|
2018-11-22 14:36:20 +01:00
|
|
|
|
case FormatType.PlainData:
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return ParsePlainDataBlock(data, settings);
|
2018-11-22 14:36:20 +01:00
|
|
|
|
case FormatType.PublicKeyHash:
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return ParsePublicKeyHashBlock(data, settings, password, passwordIsHash);
|
2018-11-28 15:43:30 +01:00
|
|
|
|
case FormatType.PublicKeyHashWithSymmetricKey:
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return ParsePublicKeyHashWithSymmetricKeyBlock(data, settings, password, passwordIsHash);
|
2018-11-22 14:36:20 +01:00
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logger.Error($"'{data}' starting with '{prefix}' does not match the binary format!");
|
|
|
|
|
|
|
|
|
|
return LoadStatus.InvalidData;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
}
|
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
private LoadStatus ParsePasswordBlock(Stream data, FormatType format, Settings settings, string password, bool passwordIsHash)
|
2018-11-28 15:43:30 +01:00
|
|
|
|
{
|
2018-11-30 14:50:28 +01:00
|
|
|
|
var decrypted = default(Stream);
|
|
|
|
|
var encryption = new PasswordEncryption(logger.CloneFor(nameof(PasswordEncryption)));
|
|
|
|
|
var status = default(LoadStatus);
|
2018-11-28 15:43:30 +01:00
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
if (format == FormatType.PasswordConfigureClient)
|
|
|
|
|
{
|
|
|
|
|
password = password == null ? string.Empty : (passwordIsHash ? password : hashAlgorithm.GenerateHashFor(password));
|
|
|
|
|
status = encryption.Decrypt(data, out decrypted, password);
|
2018-11-28 15:43:30 +01:00
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
if (status == LoadStatus.PasswordNeeded && passwordIsHash && password != string.Empty)
|
|
|
|
|
{
|
|
|
|
|
status = encryption.Decrypt(data, out decrypted, string.Empty);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
2018-11-28 15:43:30 +01:00
|
|
|
|
{
|
2018-11-30 14:50:28 +01:00
|
|
|
|
status = encryption.Decrypt(data, out decrypted, password);
|
2018-11-28 15:43:30 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (status == LoadStatus.Success)
|
|
|
|
|
{
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return ParsePlainDataBlock(decrypted, settings);
|
2018-11-28 15:43:30 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return status;
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
private LoadStatus ParsePlainDataBlock(Stream data, Settings settings)
|
2018-11-28 15:43:30 +01:00
|
|
|
|
{
|
|
|
|
|
var xmlFormat = new XmlFormat(logger.CloneFor(nameof(XmlFormat)));
|
|
|
|
|
|
|
|
|
|
if (compressor.IsCompressed(data))
|
|
|
|
|
{
|
|
|
|
|
data = compressor.Decompress(data);
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return xmlFormat.TryParse(data, settings);
|
2018-11-28 15:43:30 +01:00
|
|
|
|
}
|
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
private LoadStatus ParsePublicKeyHashBlock(Stream data, Settings settings, string password, bool passwordIsHash)
|
2018-11-28 15:43:30 +01:00
|
|
|
|
{
|
2018-11-29 15:00:10 +01:00
|
|
|
|
var encryption = new PublicKeyHashEncryption(logger.CloneFor(nameof(PublicKeyHashEncryption)));
|
|
|
|
|
var status = encryption.Decrypt(data, out Stream decrypted);
|
|
|
|
|
|
|
|
|
|
if (status == LoadStatus.Success)
|
|
|
|
|
{
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return TryParse(decrypted, settings, password, passwordIsHash);
|
2018-11-29 15:00:10 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return status;
|
2018-11-28 15:43:30 +01:00
|
|
|
|
}
|
|
|
|
|
|
2018-11-30 14:50:28 +01:00
|
|
|
|
private LoadStatus ParsePublicKeyHashWithSymmetricKeyBlock(Stream data, Settings settings, string password, bool passwordIsHash)
|
2018-11-28 15:43:30 +01:00
|
|
|
|
{
|
2018-11-29 15:00:10 +01:00
|
|
|
|
var logger = this.logger.CloneFor(nameof(PublicKeyHashWithSymmetricKeyEncryption));
|
|
|
|
|
var passwordEncryption = new PasswordEncryption(logger.CloneFor(nameof(PasswordEncryption)));
|
|
|
|
|
var encryption = new PublicKeyHashWithSymmetricKeyEncryption(logger, passwordEncryption);
|
|
|
|
|
var status = encryption.Decrypt(data, out Stream decrypted);
|
|
|
|
|
|
|
|
|
|
if (status == LoadStatus.Success)
|
|
|
|
|
{
|
2018-11-30 14:50:28 +01:00
|
|
|
|
return TryParse(decrypted, settings, password, passwordIsHash);
|
2018-11-29 15:00:10 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return status;
|
2018-11-28 15:43:30 +01:00
|
|
|
|
}
|
|
|
|
|
|
2018-11-15 08:45:17 +01:00
|
|
|
|
private string ParsePrefix(Stream data)
|
|
|
|
|
{
|
|
|
|
|
var prefixData = new byte[PREFIX_LENGTH];
|
|
|
|
|
|
|
|
|
|
if (compressor.IsCompressed(data))
|
|
|
|
|
{
|
|
|
|
|
prefixData = compressor.Peek(data, PREFIX_LENGTH);
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
data.Seek(0, SeekOrigin.Begin);
|
|
|
|
|
data.Read(prefixData, 0, PREFIX_LENGTH);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return Encoding.UTF8.GetString(prefixData);
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-22 14:36:20 +01:00
|
|
|
|
private bool TryDetermineFormat(string prefix, out FormatType format)
|
2018-11-15 08:45:17 +01:00
|
|
|
|
{
|
2018-11-22 14:36:20 +01:00
|
|
|
|
format = default(FormatType);
|
2018-11-15 08:45:17 +01:00
|
|
|
|
|
|
|
|
|
switch (prefix)
|
|
|
|
|
{
|
|
|
|
|
case "pswd":
|
2018-11-22 14:36:20 +01:00
|
|
|
|
format = FormatType.Password;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
return true;
|
|
|
|
|
case "pwcc":
|
2018-11-22 14:36:20 +01:00
|
|
|
|
format = FormatType.PasswordConfigureClient;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
return true;
|
|
|
|
|
case "plnd":
|
2018-11-22 14:36:20 +01:00
|
|
|
|
format = FormatType.PlainData;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
return true;
|
|
|
|
|
case "pkhs":
|
2018-11-22 14:36:20 +01:00
|
|
|
|
format = FormatType.PublicKeyHash;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
return true;
|
|
|
|
|
case "phsk":
|
2018-11-28 15:43:30 +01:00
|
|
|
|
format = FormatType.PublicKeyHashWithSymmetricKey;
|
2018-11-15 08:45:17 +01:00
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2018-11-22 14:36:20 +01:00
|
|
|
|
private enum FormatType
|
2018-11-15 08:45:17 +01:00
|
|
|
|
{
|
|
|
|
|
Password = 1,
|
2018-11-22 14:36:20 +01:00
|
|
|
|
PasswordConfigureClient,
|
2018-11-15 08:45:17 +01:00
|
|
|
|
PlainData,
|
|
|
|
|
PublicKeyHash,
|
2018-11-28 15:43:30 +01:00
|
|
|
|
PublicKeyHashWithSymmetricKey
|
2018-11-15 08:45:17 +01:00
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|