Exemplo n.º 1
0
        /// <summary>
        /// Casually encrypts the old and new password to be used to during
        /// a change password operation.
        /// </summary>
        /// <param name="originalPassword">The original password.</param>
        /// <param name="newPassword">The new password.</param>
        /// <returns>The encrypted password change parameters.</returns>
        /// <remarks>
        /// <note>
        /// This method is designed to provide a low level of security during development
        /// and testing, when the overhead of configuring SSL certificates is not worth
        /// the trouble.  Do not rely on this method as your only mechanism for securing
        /// credentials during transmission in production environments.
        /// </note>
        /// </remarks>
        public static byte[] EncryptPasswordChange(string originalPassword, string newPassword)
        {
            using (var ms = new EnhancedMemoryStream(256))
            {
                ms.WriteInt32(CredentialMagic);
                ms.WriteString16(originalPassword);
                ms.WriteString16(newPassword);

                return(EncryptWithSalt8(ms.ToArray(), credentialsKey));
            }
        }
Exemplo n.º 2
0
        /// <summary>
        /// Casually encrypts authentication <see cref="Credentials" /> into a byte
        /// array using using the <see cref="CredentialsKey" />.
        /// </summary>
        /// <param name="credentials">The <see cref="Credentials" />.</param>
        /// <returns>The encrypted credentials.</returns>
        /// <remarks>
        /// <note>
        /// This method is designed to provide a low level of security during development
        /// and testing, when the overhead of configuring SSL certificates is not worth
        /// the trouble.  Do not rely on this method as your only mechanism for securing
        /// credentials during transmission in production environments.
        /// </note>
        /// </remarks>
        public static byte[] EncryptCredentials(Credentials credentials)
        {
            using (var ms = new EnhancedMemoryStream(256))
            {
                ms.WriteInt32(CredentialMagic);
                ms.WriteString16(credentials.Realm);
                ms.WriteString16(credentials.Account);
                ms.WriteString16(credentials.Password);

                return(EncryptWithSalt8(ms.ToArray(), credentialsKey));
            }
        }
Exemplo n.º 3
0
        /// <summary>
        /// Encrypts authentication <see cref="Credentials" /> into a byte
        /// array using the specified public asymmetric public key and
        /// algorithm.
        /// </summary>
        /// <param name="credentials">The <see cref="Credentials" />.</param>
        /// <param name="algorithm">The encryption algorithm.</param>
        /// <param name="key">The public key.</param>
        /// <returns>The encrypted credentials.</returns>
        /// <remarks>
        /// The current implementation supports only the "RSA" provider.
        /// </remarks>
        public static byte[] EncryptCredentials(Credentials credentials, string algorithm, string key)
        {
            using (var ms = new EnhancedMemoryStream(256))
            {
                ms.WriteInt32(Crypto.CredentialMagic);
                ms.WriteString16(credentials.Realm);
                ms.WriteString16(credentials.Account);
                ms.WriteString16(credentials.Password);
                ms.WriteBytesNoLen(Crypto.GetSalt4());

                return(Encrypt(algorithm, key, ms.ToArray()));
            }
        }
Exemplo n.º 4
0
        public void EnhancedMemoryStream_String()
        {
            var es = new EnhancedMemoryStream();

            es.WriteString16(null);
            es.WriteString16("Hello World!");
            es.WriteString16(new String('a', 45000));

            es.Seek(0, SeekOrigin.Begin);
            Assert.IsNull(es.ReadString16());
            Assert.AreEqual("Hello World!", es.ReadString16());
            Assert.AreEqual(new String('a', 45000), es.ReadString16());
        }
Exemplo n.º 5
0
        /// <summary>
        /// Encrypts the keys using the symmetric key passed.
        /// </summary>
        /// <returns>The encrypted key chain.</returns>
        public byte[] Encrypt(SymmetricKey key)
        {
            using (var ms = new EnhancedMemoryStream())
            {
                ms.WriteInt32(Magic);
                ms.WriteInt32(keys.Count);

                foreach (string privateKey in keys.Values)
                {
                    ms.WriteString16(privateKey);
                }

                ms.WriteBytesNoLen(Crypto.GetSalt8());

                return(Crypto.Encrypt(ms.ToArray(), key));
            }
        }
Exemplo n.º 6
0
        /// <summary>
        /// Serializes and encrypts the message into a byte array.
        /// </summary>
        /// <param name="sharedKey">The shared encryption key.</param>
        /// <returns>The serialized message.</returns>
        public byte[] ToArray(SymmetricKey sharedKey)
        {
            if (this.HostEntry == null)
            {
                throw new InvalidOperationException("HostEntry property cannot be null.");
            }

            using (var ms = new EnhancedMemoryStream(2048))
            {
                ms.WriteInt32Le(Magic);
                ms.WriteByte((byte)FormatVer);
                ms.WriteInt64Le(TimeStampUtc.Ticks);
                ms.WriteInt32Le((int)Flags);
                ms.WriteString16(this.HostEntry.ToString());
                ms.WriteBytesNoLen(Crypto.GetSalt4());

                return(Crypto.Encrypt(ms.ToArray(), sharedKey));
            }
        }
Exemplo n.º 7
0
        /// <summary>
        /// Attempts to acquire the global application lock.
        /// </summary>
        /// <remarks>
        /// <note>
        /// <see cref="Release" /> should be called promptly when the
        /// application terminates to release the lock.
        /// </note>
        /// </remarks>
        /// <exception cref="GlobalLockException">Thrown when there's a problem acquiring the lock.</exception>
        public unsafe void Lock()
        {
            EnhancedMemoryStream ms;
            byte *pMem;

            byte[]   buf;
            Assembly assembly;
            string   path;

            lock (syncLock)
            {
                if (initLock != null)
                {
                    cLock++;    // The lock is already acquired
                    return;
                }

                try
                {
                    // Use a global shared memory block to enforce the lock.

                    assembly = Assembly.GetEntryAssembly();
                    if (assembly == null)
                    {
                        assembly = Assembly.GetCallingAssembly();
                    }

                    path = Helper.StripFileScheme(assembly.CodeBase);

                    ms = new EnhancedMemoryStream(4096);
                    ms.WriteString16(path);

                    initLock = new SharedMem();
                    initLock.Open("LT.Lock." + appName, 4096, SharedMem.OpenMode.CREATE_OPEN);
                    pMem = initLock.Lock();

                    if (pMem[0] != 0 || pMem[1] != 0)
                    {
                        buf = new byte[initLock.Size];
                        for (int i = 0; i < buf.Length; i++)
                        {
                            buf[i] = pMem[i];
                        }

                        ms = new EnhancedMemoryStream(buf);

                        initLock.Unlock();
                        initLock.Close();
                        initLock = null;

                        throw new GlobalLockException("Global lock is already acquired by [{0}].", ms.ReadString16());
                    }

                    buf = ms.ToArray();
                    for (int i = 0; i < buf.Length; i++)
                    {
                        pMem[i] = buf[i];
                    }

                    initLock.Unlock();
                }
                catch (Exception e)
                {
                    throw new GlobalLockException(e);
                }
            }

            cLock++;
        }
Exemplo n.º 8
0
        /// <summary>
        /// Encrypts a byte array using a combination of an asymmetric RSA key and the
        /// specified symmetric encryption algorithm and a one-time key generated by
        /// the method.
        /// </summary>
        /// <param name="rsaKey">The encrypting RSA key as XML or as a secure key container name.</param>
        /// <param name="plainText">The data to be encrypted.</param>
        /// <param name="algorithm">The symmetric encryption algorithm name.</param>
        /// <param name="keySize">The one-time symmetric key size to generate in bits.</param>
        /// <param name="paddedSize">Specifies the minimum padded size of the encrypted content.</param>
        /// <param name="symmetricKey">Returns as the symmetric encryption algorithm arguments.</param>
        /// <returns>The encrypted result.</returns>
        /// <remarks>
        /// <para>
        /// Note that applications should take some care to ensure that the <paramref name="symmetricKey" />
        /// value return is disposed so that the symmetric encryption key will be cleared.
        /// </para>
        /// <para>
        /// The current supported cross platform encryption algorithms
        /// are: "DES", "RC2", "TripleDES", and "AES" (Rijndael).
        /// </para>
        /// </remarks>
        /// <exception cref="ArgumentException">Thrown if the requested encryption algorithm is unknown.</exception>
        public static byte[] Encrypt(string rsaKey, byte[] plainText, string algorithm, int keySize, int paddedSize,
                                     out SymmetricKey symmetricKey)
        {
            EnhancedMemoryStream output    = new EnhancedMemoryStream(Math.Max(plainText.Length, paddedSize) + 512);
            EnhancedMemoryStream ms        = new EnhancedMemoryStream(512);
            BlockEncryptor       encryptor = null;

            byte[] symKey;
            byte[] symIV;

            Crypto.GenerateSymmetricKey(algorithm, keySize, out symKey, out symIV);

            encryptor    = new BlockEncryptor(algorithm, symKey, symIV);
            symmetricKey = new SymmetricKey(algorithm, (byte[])symKey.Clone(), (byte[])symIV.Clone());

            try
            {
                // Write header fields

                output.WriteInt32(Magic);
                output.WriteInt32(0);

                // Write encryption Info

                ms.WriteString16(algorithm);
                ms.WriteBytes16(symKey);
                ms.WriteBytes16(symIV);
                ms.WriteBytesNoLen(Crypto.GetSalt8());
                output.WriteBytes16(AsymmetricCrypto.Encrypt(CryptoAlgorithm.RSA, rsaKey, ms.ToArray()));

                // Write encrypted contents

                ms.SetLength(0);
                ms.WriteInt32(Magic);
                ms.WriteBytesNoLen(Crypto.GetSalt8());
                ms.WriteBytes32(plainText);

                for (int i = plainText.Length; i < paddedSize; i++)
                {
                    ms.WriteByte((byte)i);     // Padding bytes
                }
                output.WriteBytes32(encryptor.Encrypt(ms.ToArray()));

                // That's it, we're done.

                return(output.ToArray());
            }
            finally
            {
                if (symKey != null)
                {
                    Array.Clear(symKey, 0, symKey.Length);
                }

                if (symIV != null)
                {
                    Array.Clear(symIV, 0, symIV.Length);
                }

                if (encryptor != null)
                {
                    encryptor.Dispose();
                }

                output.Close();
                ms.Close();
            }
        }