calculate master secret

2025-04-24 01:46:36 +02:00 · 2015-02-17 15:34:30 -05:00 · 2015-02-17 15:34:30 -05:00 · 47e8cfd91e
commit 47e8cfd91e
parent 9968485cdd
2 changed files with 32 additions and 0 deletions
--- a/Reseed.cpp
+++ b/Reseed.cpp
@ -3,6 +3,7 @@
 #include <sstream>
 #include <boost/regex.hpp>
 #include <boost/filesystem.hpp>
+#include <cryptopp/hmac.h>
 #include <cryptopp/osrng.h>
 #include <cryptopp/asn.h>
 #include <cryptopp/base64.h>
@ -605,12 +606,40 @@ namespace data
 			// send ClientKeyExchange
 			site.write ((char *)clientKeyExchange, sizeof (clientKeyExchange));
 			site.write ((char *)encrypted, 512);
+			uint8_t masterSecret[48], random[64];
+			memcpy (random, clientHello + 11, 32);
+			memcpy (random + 32, serverRandom, 32);
+			PRF (secret, "master secret", random, 48, masterSecret);
 		}
 		else
 			LogPrint (eLogError, "Can't connect to ", address);
 		return "";
 	}	
 	
+	void Reseeder::PRF (const uint8_t * secret, const char * label, const uint8_t * random, size_t len, uint8_t * buf)
+	{
+		// secret is assumed 48 bytes	
+		// random is 64 bytes
+		// output is 48 bytes (buffer size should be 64)
+ 		CryptoPP::HMAC<CryptoPP::SHA256> hmac (secret, 48);	
+		uint8_t seed[96]; size_t seedLen;
+		seedLen = strlen (label);	
+		memcpy (seed, label, seedLen);
+		memcpy (seed + seedLen, random, 64);
+		seedLen += 64;
+
+		size_t offset = 0;
+		uint8_t a[128];
+		hmac.CalculateDigest (a, seed, seedLen);
+		while (offset < len)
+		{
+			memcpy (a + 32, seed, seedLen);
+			hmac.CalculateDigest (buf + offset, a, seedLen + 32);
+			offset += 32;
+			hmac.CalculateDigest (a, a, 32);
+		}
+	}
+
 }
 }

--- a/Reseed.h
+++ b/Reseed.h
@ -38,6 +38,9 @@ namespace data

 			bool FindZipDataDescriptor (std::istream& s);
 			
+			// for HTTPS
+			void PRF (const uint8_t * secret, const char * label, const uint8_t * random, size_t len, uint8_t * buf);
+
 		private:	

 			std::map<std::string, PublicKey> m_SigningKeys;