FilesExpand file tree

 dev

/

ConnectionState.cs

Copy path

BlameMore file actions

BlameMore file actions

Latest commit

 

History

History

History

116 lines (110 loc) · 4.42 KB

 dev

/

ConnectionState.cs

Top

File metadata and controls

• Code
• Blame

116 lines (110 loc) · 4.42 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

#region License

// The PostgreSQL License

//

// Copyright (C) 2017 The Npgsql Development Team

//

// Permission to use, copy, modify, and distribute this software and its

// documentation for any purpose, without fee, and without a written

// agreement is hereby granted, provided that the above copyright notice

// and this paragraph and the following two paragraphs appear in all copies.

//

// IN NO EVENT SHALL THE NPGSQL DEVELOPMENT TEAM BE LIABLE TO ANY PARTY

// FOR DIRECT, INDIRECT, SPECIAL, INCIDENTAL, OR CONSEQUENTIAL DAMAGES,

// INCLUDING LOST PROFITS, ARISING OUT OF THE USE OF THIS SOFTWARE AND ITS

// DOCUMENTATION, EVEN IF THE NPGSQL DEVELOPMENT TEAM HAS BEEN ADVISED OF

// THE POSSIBILITY OF SUCH DAMAGE.

//

// THE NPGSQL DEVELOPMENT TEAM SPECIFICALLY DISCLAIMS ANY WARRANTIES,

// INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY

// AND FITNESS FOR A PARTICULAR PURPOSE. THE SOFTWARE PROVIDED HEREUNDER IS

// ON AN "AS IS" BASIS, AND THE NPGSQL DEVELOPMENT TEAM HAS NO OBLIGATIONS

// TO PROVIDE MAINTENANCE, SUPPORT, UPDATES, ENHANCEMENTS, OR MODIFICATIONS.

#endregion

using System;

using System.Security.Cryptography;

using JetBrains.Annotations;

namespace Npgsql.Tls

{

sealed class ConnectionState : IDisposable

{

public TlsVersion TlsVersion { get; set; }

[CanBeNull]

public CipherSuiteInfo CipherSuite { get; set; }

public Aes ReadAes { get; set; }

public Aes WriteAes { get; set; }

public int BlockLen => 16;

#if NET45 || NET451

public HMAC ReadMac { get; set; }

public HMAC WriteMac { get; set; }

#else

public IncrementalHash ReadMac { get; set; }

public IncrementalHash WriteMac { get; set; }

#endif

public ICryptoTransform ReadAesECB { get; set; }

public ICryptoTransform WriteAesECB { get; set; }

public ulong[] ReadGCMTable { get; set; }

public ulong[] WriteGCMTable { get; set; }

public int MacLen => CipherSuite.MACLen / 8;

public byte[] MasterSecret { get; set; }

public byte[] ClientRandom { get; set; }

public byte[] ServerRandom { get; set; }

public ulong ReadSeqNum { get; set; }

public ulong WriteSeqNum { get; set; }

public byte[] ReadIv { get; set; }

public byte[] WriteIv { get; set; }

public bool SecureRenegotiation { get; set; }

public byte[] ClientVerifyData { get; set; }

public byte[] ServerVerifyData { get; set; }

public int IvLen => CipherSuite == null ? 0 : CipherSuite.AesMode == AesMode.GCM ? 8 : TlsVersion != TlsVersion.TLSv1_0 ? 16 : 0;

public PRFAlgorithm PRFAlgorithm => TlsVersion == TlsVersion.TLSv1_2 ? CipherSuite.PRFAlgorithm : PRFAlgorithm.TLSPrfMD5SHA1;

public bool IsAuthenticated => ReadAes != null;

public int WriteStartPos

{

get

{

if (TlsVersion != TlsVersion.TLSv1_0)

{

return 5 + IvLen;

}

else

{

// To avoid the BEAST attack, we add an empty application data record

return 5 + (MacLen + BlockLen) / BlockLen * BlockLen + 5;

}

}

}

public void Dispose()

{

if (ReadAesECB != null)

ReadAesECB.Dispose();

if (WriteAesECB != null)

WriteAesECB.Dispose();

if (ReadAes != null)

ReadAes.Dispose();

if (WriteAes != null)

WriteAes.Dispose();

if (ReadMac != null)

ReadMac.Dispose();

if (WriteMac != null)

WriteMac.Dispose();

if (ReadIv != null)

Utils.ClearArray(ReadIv);

if (WriteIv != null)

Utils.ClearArray(WriteIv);

if (ReadGCMTable != null)

Utils.ClearArray(ReadGCMTable);

if (WriteGCMTable != null)

Utils.ClearArray(WriteGCMTable);

if (MasterSecret != null)

Utils.ClearArray(MasterSecret);

if (ClientRandom != null)

Utils.ClearArray(ClientRandom);

if (ServerRandom != null)

Utils.ClearArray(ServerRandom);

if (ClientVerifyData != null)

Utils.ClearArray(ClientVerifyData);

if (ServerVerifyData != null)

Utils.ClearArray(ServerVerifyData);

}

}

}