using System; using System.Collections.Generic; using System.Linq; using System.Text; using System.Security.Cryptography; using System.IO; namespace MinecraftClient.Crypto { ///

/// Methods for handling all the crypto stuff: RSA (Encryption Key Request), AES (Encrypted Stream), SHA-1 (Server Hash). ///

public class CryptoHandler { ///

/// Get a cryptographic service for encrypting data using the server's RSA public key ///

/// Byte array containing the encoded key /// Returns the corresponding RSA Crypto Service public static RSACryptoServiceProvider DecodeRSAPublicKey(byte[] x509key) { /* Code from StackOverflow no. 18091460 */ byte[] SeqOID = { 0x2A, 0x86, 0x48, 0x86, 0xF7, 0x0D, 0x01, 0x01, 0x01 }; System.IO.MemoryStream ms = new System.IO.MemoryStream(x509key); System.IO.BinaryReader reader = new System.IO.BinaryReader(ms); if (reader.ReadByte() == 0x30) ReadASNLength(reader); //skip the size else return null; int identifierSize = 0; //total length of Object Identifier section if (reader.ReadByte() == 0x30) identifierSize = ReadASNLength(reader); else return null; if (reader.ReadByte() == 0x06) //is the next element an object identifier? { int oidLength = ReadASNLength(reader); byte[] oidBytes = new byte[oidLength]; reader.Read(oidBytes, 0, oidBytes.Length); if (oidBytes.SequenceEqual(SeqOID) == false) //is the object identifier rsaEncryption PKCS#1? return null; int remainingBytes = identifierSize - 2 - oidBytes.Length; reader.ReadBytes(remainingBytes); } if (reader.ReadByte() == 0x03) //is the next element a bit string? { ReadASNLength(reader); //skip the size reader.ReadByte(); //skip unused bits indicator if (reader.ReadByte() == 0x30) { ReadASNLength(reader); //skip the size if (reader.ReadByte() == 0x02) //is it an integer? { int modulusSize = ReadASNLength(reader); byte[] modulus = new byte[modulusSize]; reader.Read(modulus, 0, modulus.Length); if (modulus[0] == 0x00) //strip off the first byte if it's 0 { byte[] tempModulus = new byte[modulus.Length - 1]; Array.Copy(modulus, 1, tempModulus, 0, modulus.Length - 1); modulus = tempModulus; } if (reader.ReadByte() == 0x02) //is it an integer? { int exponentSize = ReadASNLength(reader); byte[] exponent = new byte[exponentSize]; reader.Read(exponent, 0, exponent.Length); RSACryptoServiceProvider RSA = new RSACryptoServiceProvider(); RSAParameters RSAKeyInfo = new RSAParameters(); RSAKeyInfo.Modulus = modulus; RSAKeyInfo.Exponent = exponent; RSA.ImportParameters(RSAKeyInfo); return RSA; } } } } return null; } ///

/// Subfunction for decrypting ASN.1 (x509) RSA certificate data fields lengths ///

/// StreamReader containing the stream to decode /// Return the read length private static int ReadASNLength(System.IO.BinaryReader reader) { //Note: this method only reads lengths up to 4 bytes long as //this is satisfactory for the majority of situations. int length = reader.ReadByte(); if ((length & 0x00000080) == 0x00000080) //is the length greater than 1 byte { int count = length & 0x0000000f; byte[] lengthBytes = new byte[4]; reader.Read(lengthBytes, 4 - count, count); Array.Reverse(lengthBytes); // length = BitConverter.ToInt32(lengthBytes, 0); } return length; } ///

/// Generate a new random AES key for symmetric encryption ///

/// Returns a byte array containing the key public static byte[] GenerateAESPrivateKey() { AesManaged AES = new AesManaged(); AES.KeySize = 128; AES.GenerateKey(); return AES.Key; } ///

/// Get a SHA-1 hash for online-mode session checking ///

/// Server ID hash /// Server's RSA key /// Secret key chosen by the client /// Returns the corresponding SHA-1 hex hash public static string getServerHash(string serverID, byte[] PublicKey, byte[] SecretKey) { byte[] hash = digest(new byte[][] { Encoding.GetEncoding("iso-8859-1").GetBytes(serverID), SecretKey, PublicKey }); bool negative = (hash[0] & 0x80) == 0x80; if (negative) { hash = TwosComplementLittleEndian(hash); } string result = GetHexString(hash).TrimStart('0'); if (negative) { result = "-" + result; } return result; } ///

/// Generate a SHA-1 hash using several byte arrays ///

/// array of byte arrays to hash /// Returns the hashed data private static byte[] digest(byte[][] tohash) { SHA1CryptoServiceProvider sha1 = new SHA1CryptoServiceProvider(); for (int i = 0; i < tohash.Length; i++) sha1.TransformBlock(tohash[i], 0, tohash[i].Length, tohash[i], 0); sha1.TransformFinalBlock(new byte[] { }, 0, 0); return sha1.Hash; } ///

/// Converts a byte array to its hex string representation ///

/// Byte array to convert /// Returns the string representation private static string GetHexString(byte[] p) { string result = string.Empty; for (int i = 0; i < p.Length; i++) result += p[i].ToString("x2"); return result; } ///

/// Compute the two's complement of a little endian byte array ///

/// Byte array to compute /// Returns the corresponding two's complement private static byte[] TwosComplementLittleEndian(byte[] p) { int i; bool carry = true; for (i = p.Length - 1; i >= 0; i--) { p[i] = (byte)~p[i]; if (carry) { carry = p[i] == 0xFF; p[i]++; } } return p; } ///

/// Get a new AES-encrypted stream for wrapping a non-encrypted stream. ///

/// Stream to encrypt /// Key to use /// Padding provider for Mono implementation /// Return an appropriate stream depending on the framework being used public static IAesStream getAesStream(Stream underlyingStream, byte[] AesKey, IPaddingProvider paddingProvider) { if (Program.isUsingMono) { return new Streams.MonoAesStream(underlyingStream, AesKey, paddingProvider); } else return new Streams.RegularAesStream(underlyingStream, AesKey); } } }