mirrors
/
tigervnc
mirror of https://github.com/TigerVNC/tigervnc.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 37 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4302 Commits
15 Branches
Tree: 89f6d5aed0
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '89f6d5aed0'
${ noResults }
tigervnc/java/com/tigervnc/rfb/CSecurityTLS.java

CSecurityTLS.java 18KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532 
  1. /*

  2.  * Copyright (C) 2004 Red Hat Inc.

  3.  * Copyright (C) 2005 Martin Koegler

  4.  * Copyright (C) 2010 m-privacy GmbH

  5.  * Copyright (C) 2010 TigerVNC Team

  6.  * Copyright (C) 2011-2019 Brian P. Hinz

  7.  * Copyright (C) 2015 D. R. Commander.  All Rights Reserved.

  8.  *

  9.  * This is free software; you can redistribute it and/or modify

  10.  * it under the terms of the GNU General Public License as published by

  11.  * the Free Software Foundation; either version 2 of the License, or

  12.  * (at your option) any later version.

  13.  *

  14.  * This software is distributed in the hope that it will be useful,

  15.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  16.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

  17.  * GNU General Public License for more details.

  18.  *

  19.  * You should have received a copy of the GNU General Public License

  20.  * along with this software; if not, write to the Free Software

  21.  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301,

  22.  * USA.

  23.  */

  24. 

  25. package com.tigervnc.rfb;

  26. 

  27. import javax.net.ssl.*;

  28. import java.security.KeyManagementException;

  29. import java.security.KeyStore;

  30. import java.security.NoSuchAlgorithmException;

  31. import java.security.MessageDigest;

  32. import java.security.cert.*;

  33. import java.io.BufferedReader;

  34. import java.io.File;

  35. import java.io.FileInputStream;

  36. import java.io.FileNotFoundException;

  37. import java.io.FileReader;

  38. import java.io.FileWriter;

  39. import java.io.InputStream;

  40. import java.io.IOException;

  41. import java.nio.ByteBuffer;

  42. import java.nio.charset.Charset;

  43. import java.util.ArrayList;

  44. import java.util.Base64;

  45. import java.util.Collection;

  46. import java.util.Collections;

  47. import java.util.Iterator;

  48. import java.util.List;

  49. import javax.naming.InvalidNameException;

  50. import javax.naming.ldap.LdapName;

  51. import javax.naming.ldap.Rdn;

  52. import javax.net.ssl.HostnameVerifier;

  53. import javax.swing.JOptionPane;

  54. 

  55. import com.tigervnc.rdr.*;

  56. import com.tigervnc.network.*;

  57. import com.tigervnc.vncviewer.*;

  58. 

  59. import static javax.swing.JOptionPane.*;

  60. 

  61. public class CSecurityTLS extends CSecurity {

  62. 

  63.   public static StringParameter X509CA

  64.   = new StringParameter("X509CA",

  65.                         "X509 CA certificate", "", Configuration.ConfigurationObject.ConfViewer);

  66.   public static StringParameter X509CRL

  67.   = new StringParameter("X509CRL",

  68.                         "X509 CRL file", "", Configuration.ConfigurationObject.ConfViewer);

  69.   public static UserMsgBox msg;

  70. 

  71.   private void initGlobal()

  72.   {

  73.     try {

  74.       ctx = SSLContext.getInstance("TLS");

  75.     } catch(NoSuchAlgorithmException e) {

  76.       throw new Exception(e.toString());

  77.     }

  78.   }

  79. 

  80.   public CSecurityTLS(boolean _anon)

  81.   {

  82.     anon = _anon;

  83.     manager = null;

  84. 

  85.     setDefaults();

  86.     cafile = X509CA.getData();

  87.     crlfile = X509CRL.getData();

  88.   }

  89. 

  90.   public static String getDefaultCA() {

  91.     if (UserPreferences.get("viewer", "x509ca") != null)

  92.       return UserPreferences.get("viewer", "x509ca");

  93.     return FileUtils.getVncHomeDir()+"x509_ca.pem";

  94.   }

  95. 

  96.   public static String getDefaultCRL() {

  97.     if (UserPreferences.get("viewer", "x509crl") != null)

  98.       return UserPreferences.get("viewer", "x509crl");

  99.     return FileUtils.getVncHomeDir()+"x509_crl.pem";

  100.   }

  101. 

  102.   public static void setDefaults()

  103.   {

  104.     if (new File(getDefaultCA()).exists())

  105.       X509CA.setDefaultStr(getDefaultCA());

  106.     if (new File(getDefaultCRL()).exists())

  107.       X509CRL.setDefaultStr(getDefaultCRL());

  108.   }

  109. 

  110.   public boolean processMsg(CConnection cc) {

  111.     is = (FdInStream)cc.getInStream();

  112.     os = (FdOutStream)cc.getOutStream();

  113.     client = cc;

  114. 

  115.     initGlobal();

  116. 

  117.     if (manager == null) {

  118.       if (!is.checkNoWait(1))

  119.         return false;

  120. 

  121.       if (is.readU8() == 0) {

  122.         int result = is.readU32();

  123.         String reason;

  124.         if (result == Security.secResultFailed ||

  125.             result == Security.secResultTooMany)

  126.           reason = is.readString();

  127.         else

  128.           reason = new String("Authentication failure (protocol error)");

  129.         throw new AuthFailureException(reason);

  130.       }

  131. 

  132.       setParam();

  133.     }

  134. 

  135.     try {

  136.       manager = new SSLEngineManager(engine, is, os);

  137.       manager.doHandshake();

  138.     } catch(java.lang.Exception e) {

  139.       throw new SystemException(e.toString());

  140.     }

  141. 

  142.     cc.setStreams(new TLSInStream(is, manager),

  143. 		              new TLSOutStream(os, manager));

  144.     return true;

  145.   }

  146. 

  147.   private void setParam() {

  148. 

  149.     if (anon) {

  150.       try {

  151.         ctx.init(null, null, null);

  152.       } catch(KeyManagementException e) {

  153.         throw new AuthFailureException(e.toString());

  154.       }

  155.     } else {

  156.       try {

  157.         TrustManager[] myTM = new TrustManager[] {

  158.           new MyX509TrustManager()

  159.         };

  160.         ctx.init (null, myTM, null);

  161.       } catch (java.security.GeneralSecurityException e) {

  162.         throw new AuthFailureException(e.toString());

  163.       }

  164.     }

  165.     SSLSocketFactory sslfactory = ctx.getSocketFactory();

  166.     engine = ctx.createSSLEngine(client.getServerName(),

  167.                                  client.getServerPort());

  168.     engine.setUseClientMode(true);

  169. 

  170.     String[] supported = engine.getSupportedProtocols();

  171.     ArrayList<String> enabled = new ArrayList<String>();

  172.     for (int i = 0; i < supported.length; i++)

  173.       if (supported[i].matches("TLS.*"))

  174. 	      enabled.add(supported[i]);

  175.     engine.setEnabledProtocols(enabled.toArray(new String[0]));

  176. 

  177.     if (anon) {

  178.       supported = engine.getSupportedCipherSuites();

  179.       enabled = new ArrayList<String>();

  180.       // prefer ECDH over DHE

  181.       for (int i = 0; i < supported.length; i++)

  182.         if (supported[i].matches("TLS_ECDH_anon.*"))

  183. 	        enabled.add(supported[i]);

  184.       for (int i = 0; i < supported.length; i++)

  185.         if (supported[i].matches("TLS_DH_anon.*"))

  186. 	        enabled.add(supported[i]);

  187.       engine.setEnabledCipherSuites(enabled.toArray(new String[0]));

  188.     } else {

  189.       engine.setEnabledCipherSuites(engine.getSupportedCipherSuites());

  190.     }

  191. 

  192.   }

  193. 

  194.   class MyX509TrustManager implements X509TrustManager

  195.   {

  196. 

  197.     X509TrustManager tm;

  198. 

  199.     MyX509TrustManager() throws java.security.GeneralSecurityException

  200.     {

  201.       KeyStore ks = KeyStore.getInstance("JKS");

  202.       CertificateFactory cf = CertificateFactory.getInstance("X.509");

  203.       try {

  204.         ks.load(null, null);

  205.         String a = TrustManagerFactory.getDefaultAlgorithm();

  206.         TrustManagerFactory tmf = TrustManagerFactory.getInstance(a);

  207.         tmf.init((KeyStore)null);

  208.         for (TrustManager m : tmf.getTrustManagers())

  209.           if (m instanceof X509TrustManager)

  210.             for (X509Certificate c : ((X509TrustManager)m).getAcceptedIssuers())

  211.               ks.setCertificateEntry(getThumbprint((X509Certificate)c), c);

  212.         File cacert = new File(cafile);

  213.         if (cacert.exists() && cacert.canRead()) {

  214.           InputStream caStream = new MyFileInputStream(cacert);

  215.           Collection<? extends Certificate> cacerts =

  216.             cf.generateCertificates(caStream);

  217.           for (Certificate cert : cacerts) {

  218.             String thumbprint = getThumbprint((X509Certificate)cert);

  219.             ks.setCertificateEntry(thumbprint, (X509Certificate)cert);

  220.           }

  221.         }

  222.         PKIXBuilderParameters params =

  223.           new PKIXBuilderParameters(ks, new X509CertSelector());

  224.         File crlcert = new File(crlfile);

  225.         if (!crlcert.exists() || !crlcert.canRead()) {

  226.           params.setRevocationEnabled(false);

  227.         } else {

  228.           InputStream crlStream = new FileInputStream(crlfile);

  229.           Collection<? extends CRL> crls = cf.generateCRLs(crlStream);

  230.           CertStoreParameters csp = new CollectionCertStoreParameters(crls);

  231.           CertStore store = CertStore.getInstance("Collection", csp);

  232.           params.addCertStore(store);

  233.           params.setRevocationEnabled(true);

  234.         }

  235.         tmf = TrustManagerFactory.getInstance("PKIX");

  236.         tmf.init(new CertPathTrustManagerParameters(params));

  237.         tm = (X509TrustManager)tmf.getTrustManagers()[0];

  238.       } catch (java.lang.Exception e) {

  239.         throw new Exception(e.getMessage());

  240.       }

  241.     }

  242. 

  243.     public void checkClientTrusted(X509Certificate[] chain, String authType)

  244.       throws CertificateException

  245.     {

  246.       tm.checkClientTrusted(chain, authType);

  247.     }

  248. 

  249.     private final char[] hexCode = "0123456789ABCDEF".toCharArray();

  250. 

  251.     private String printHexBinary(byte[] data)

  252.     {

  253.       StringBuilder r = new StringBuilder(data.length*2);

  254.       for (byte b : data) {

  255.         r.append(hexCode[(b >> 4) & 0xF]);

  256.         r.append(hexCode[(b & 0xF)]); 

  257.       }

  258.       return r.toString();

  259.     }

  260. 

  261.     public void checkServerTrusted(X509Certificate[] chain, String authType)

  262.       throws CertificateException

  263.     {

  264.       Collection<? extends Certificate> certs = null;

  265.       X509Certificate cert = chain[0];

  266.       String pk =

  267.         Base64.getEncoder().encodeToString(cert.getPublicKey().getEncoded());

  268.       try {

  269.         cert.checkValidity();

  270.         verifyHostname(cert);

  271.       } catch(CertificateParsingException e) {

  272.         throw new SystemException(e.getMessage());

  273.       } catch(CertificateNotYetValidException e) {

  274.         throw new AuthFailureException("server certificate has not been activated");

  275.       } catch(CertificateExpiredException e) {

  276.         if (!msg.showMsgBox(YES_NO_OPTION, "certificate has expired",

  277. 			      "The certificate of the server has expired, "+

  278. 			      "do you want to continue?"))

  279.           throw new AuthFailureException("server certificate has expired");

  280.       }

  281.       File vncDir = new File(FileUtils.getVncHomeDir());

  282.       if (!vncDir.exists()) {

  283.         try {

  284.           vncDir.mkdir();

  285.         } catch(SecurityException e) {

  286.           throw new AuthFailureException("Could not obtain VNC home directory "+

  287.                                          "path for known hosts storage");

  288.         }

  289.       }

  290.       File dbPath = new File(vncDir, "x509_known_hosts");

  291.       String info =

  292.         "  Subject: "+cert.getSubjectX500Principal().getName()+"\n"+

  293.         "  Issuer: "+cert.getIssuerX500Principal().getName()+"\n"+

  294.         "  Serial Number: "+cert.getSerialNumber()+"\n"+

  295.         "  Version: "+cert.getVersion()+"\n"+

  296.         "  Signature Algorithm: "+cert.getPublicKey().getAlgorithm()+"\n"+

  297.         "  Not Valid Before: "+cert.getNotBefore()+"\n"+

  298.         "  Not Valid After: "+cert.getNotAfter()+"\n"+

  299.         "  SHA-1 Fingerprint: "+getThumbprint(cert)+"\n";

  300.       try {

  301.         if (dbPath.exists()) {

  302.           FileReader db = new FileReader(dbPath);

  303.           BufferedReader dbBuf = new BufferedReader(db);

  304.           String line;

  305.           String server = client.getServerName().toLowerCase();

  306.           while ((line = dbBuf.readLine())!=null) {

  307.             String fields[] = line.split("\\|");

  308.             if (fields.length==6) {

  309.               if (server.equals(fields[2]) && pk.equals(fields[5])) {

  310.                 vlog.debug("Server certificate found in known hosts file");

  311.                 dbBuf.close();

  312.                 return;

  313.               } else if (server.equals(fields[2]) && !pk.equals(fields[5]) ||

  314.                          !server.equals(fields[2]) && pk.equals(fields[5])) {

  315.                 throw new CertStoreException();

  316.               }

  317.             }

  318.           }

  319.           dbBuf.close();

  320.         }

  321.         tm.checkServerTrusted(chain, authType);

  322.       } catch (IOException e) {

  323.         throw new AuthFailureException("Could not load known hosts database");

  324.       } catch (CertStoreException e) {

  325.         vlog.debug("Server host key mismatch");

  326.         vlog.debug(info);

  327.         String text =

  328.           "This host is previously known with a different "+

  329.           "certificate, and the new certificate has been "+

  330.           "signed by an unknown authority\n"+

  331.           "\n"+info+"\n"+

  332.           "Someone could be trying to impersonate the site and you should not continue.\n"+

  333.           "\n"+

  334.           "Do you want to make an exception for this server?";

  335.         if (!msg.showMsgBox(YES_NO_OPTION, "Unexpected certificate issuer", text))

  336.           throw new AuthFailureException("Unexpected certificate issuer");

  337.         store_pubkey(dbPath, client.getServerName().toLowerCase(), pk);

  338.       } catch (java.lang.Exception e) {

  339.         if (e.getCause() instanceof CertPathBuilderException) {

  340.           vlog.debug("Server host not previously known");

  341.           vlog.debug(info);

  342.           String text =

  343.             "This certificate has been signed by an unknown authority\n"+

  344.             "\n"+info+"\n"+

  345.             "Someone could be trying to impersonate the site and you should not continue.\n"+

  346.             "\n"+

  347.             "Do you want to make an exception for this server?";

  348.           if (!msg.showMsgBox(YES_NO_OPTION, "Unknown certificate issuer", text))

  349.             throw new AuthFailureException("Unknown certificate issuer");

  350.           store_pubkey(dbPath, client.getServerName().toLowerCase(), pk);

  351.         } else {

  352.           throw new SystemException(e.getMessage());

  353.         }

  354.       }

  355.     }

  356. 

  357.     private void store_pubkey(File dbPath, String serverName, String pk)

  358.     {

  359.       ArrayList<String> lines = new ArrayList<String>();

  360.       File vncDir = new File(FileUtils.getVncHomeDir());

  361.       try {

  362.         if (dbPath.exists()) {

  363.           FileReader db = new FileReader(dbPath);

  364.           BufferedReader dbBuf = new BufferedReader(db);

  365.           String line;

  366.           while ((line = dbBuf.readLine())!=null) {

  367.             String fields[] = line.split("\\|");

  368.             if (fields.length==6)

  369.               if (!serverName.equals(fields[2]) && !pk.equals(fields[5]))

  370.                 lines.add(line);

  371.           }

  372.           dbBuf.close();

  373.         }

  374.       } catch (IOException e) {

  375.         throw new AuthFailureException("Could not load known hosts database");

  376.       }

  377.       try {

  378.         if (!dbPath.exists())

  379.           dbPath.createNewFile();

  380.         FileWriter fw = new FileWriter(dbPath.getAbsolutePath(), false);

  381.         Iterator i = lines.iterator();

  382.         while (i.hasNext())

  383.           fw.write((String)i.next()+"\n");

  384.         fw.write("|g0|"+serverName+"|*|0|"+pk+"\n");

  385.         fw.close();

  386.       } catch (IOException e) {

  387.         vlog.error("Failed to store server certificate to known hosts database");

  388.       }

  389.     }

  390. 

  391.     public X509Certificate[] getAcceptedIssuers ()

  392.     {

  393.       return tm.getAcceptedIssuers();

  394.     }

  395. 

  396.     private String getThumbprint(X509Certificate cert)

  397.     {

  398.       String thumbprint = null;

  399.       try {

  400.         MessageDigest md = MessageDigest.getInstance("SHA-1");

  401.         md.update(cert.getEncoded());

  402.         thumbprint = printHexBinary(md.digest());

  403.         thumbprint = thumbprint.replaceAll("..(?!$)", "$0 ");

  404.       } catch(CertificateEncodingException e) {

  405.         throw new SystemException(e.getMessage());

  406.       } catch(NoSuchAlgorithmException e) {

  407.         throw new SystemException(e.getMessage());

  408.       }

  409.       return thumbprint;

  410.     }

  411. 

  412.     private void verifyHostname(X509Certificate cert)

  413.       throws CertificateParsingException

  414.     {

  415.       try {

  416.         Collection sans = cert.getSubjectAlternativeNames();

  417.         if (sans == null) {

  418.           String dn = cert.getSubjectX500Principal().getName();

  419.           LdapName ln = new LdapName(dn);

  420.           for (Rdn rdn : ln.getRdns()) {

  421.             if (rdn.getType().equalsIgnoreCase("CN")) {

  422.               String peer = client.getServerName().toLowerCase();

  423.               if (peer.equals(((String)rdn.getValue()).toLowerCase()))

  424.                 return;

  425.             }

  426.           }

  427.         } else {

  428.           Iterator i = sans.iterator();

  429.           while (i.hasNext()) {

  430.             List nxt = (List)i.next();

  431.             if (((Integer)nxt.get(0)).intValue() == 2) {

  432.               String peer = client.getServerName().toLowerCase();

  433.               if (peer.equals(((String)nxt.get(1)).toLowerCase()))

  434.                 return;

  435.             } else if (((Integer)nxt.get(0)).intValue() == 7) {

  436.               String peer = ((CConn)client).getSocket().getPeerAddress();

  437.               if (peer.equals(((String)nxt.get(1)).toLowerCase()))

  438.                 return;

  439.             }

  440.           }

  441.         }

  442.         Object[] answer = {"YES", "NO"};

  443.         int ret = JOptionPane.showOptionDialog(null,

  444.           "Hostname ("+client.getServerName()+") does not match the"+

  445.           " server certificate, do you want to continue?",

  446.           "Certificate hostname mismatch",

  447.           JOptionPane.YES_NO_OPTION, JOptionPane.WARNING_MESSAGE,

  448.           null, answer, answer[0]);

  449.         if (ret != JOptionPane.YES_OPTION)

  450.           throw new WarningException("Certificate hostname mismatch.");

  451.       } catch (CertificateParsingException e) {

  452.         throw new SystemException(e.getMessage());

  453.       } catch (InvalidNameException e) {

  454.         throw new SystemException(e.getMessage());

  455.       }

  456.     }

  457. 

  458.     private class MyFileInputStream extends InputStream {

  459.       // Blank lines in a certificate file will cause Java 6 to throw a

  460.       // "DerInputStream.getLength(): lengthTag=127, too big" exception.

  461.       ByteBuffer buf;

  462. 

  463.       public MyFileInputStream(String name) {

  464.         this(new File(name));

  465.       }

  466. 

  467.       public MyFileInputStream(File file) {

  468.         StringBuffer sb = new StringBuffer();

  469.         BufferedReader reader = null;

  470.         try {

  471.           reader = new BufferedReader(new FileReader(file));

  472.           String l;

  473.           while ((l = reader.readLine()) != null) {

  474.             if (l.trim().length() > 0 )

  475.               sb.append(l+"\n");

  476.           }

  477.         } catch (java.lang.Exception e) {

  478.           throw new Exception(e.toString());

  479.         } finally {

  480.           try {

  481.             if (reader != null)

  482.               reader.close();

  483.           } catch(IOException ioe) {

  484.             throw new Exception(ioe.getMessage());

  485.           }

  486.         }

  487.         Charset utf8 = Charset.forName("UTF-8");

  488.         buf = ByteBuffer.wrap(sb.toString().getBytes(utf8));

  489.         buf.limit(buf.capacity());

  490.       }

  491. 

  492.       @Override

  493.       public int read(byte[] b) throws IOException {

  494.         return this.read(b, 0, b.length);

  495.       }

  496. 

  497.       @Override

  498.       public int read(byte[] b, int off, int len) throws IOException {

  499.         if (!buf.hasRemaining())

  500.           return -1;

  501.         len = Math.min(len, buf.remaining());

  502.         buf.get(b, off, len);

  503.         return len;

  504.       }

  505. 

  506.       @Override

  507.       public int read() throws IOException {

  508.         if (!buf.hasRemaining())

  509.           return -1;

  510.         return buf.get() & 0xFF;

  511.       }

  512.     }

  513.   }

  514. 

  515.   public final int getType() { return anon ? Security.secTypeTLSNone : Security.secTypeX509None; }

  516.   public final String description()

  517.     { return anon ? "TLS Encryption without VncAuth" : "X509 Encryption without VncAuth"; }

  518.   public boolean isSecure() { return !anon; }

  519. 

  520.   protected CConnection client;

  521. 

  522.   private SSLContext ctx;

  523.   private SSLEngine engine;

  524.   private SSLEngineManager manager;

  525.   private boolean anon;

  526. 

  527.   private String cafile, crlfile;

  528.   private FdInStream is;

  529.   private FdOutStream os;

  530. 

  531.   static LogWriter vlog = new LogWriter("CSecurityTLS");

  532. }