LibTLS: Implement a preliminary version of the TLS protocol

TLS::TLSv12 is a Core::Socket, however, I think splitting that into a TLS::Socket would probably be beneficial
author: AnotherTest <ali.mpfard@gmail.com> 2020-04-29 19:26:52 +0430
committer: Andreas Kling <kling@serenityos.org> 2020-05-02 12:24:10 +0200
commit: 2247036acfbdb9de01109f858aa62fde85056217 (patch)
tree: 385064c38f68f58706b4453e17334149613f18ce
parent: 7eb72c72e85bd52c27aace2a68f4231305f94da7 (diff)
download: serenity-2247036acfbdb9de01109f858aa62fde85056217.zip
3 files changed, 63 insertions, 1 deletions
diff --git a/Libraries/LibCrypto/Cipher/Mode/CBC.h b/Libraries/LibCrypto/Cipher/Mode/CBC.h
index f2e6cac961..223cce6852 100644
--- a/Libraries/LibCrypto/Cipher/Mode/CBC.h
+++ b/Libraries/LibCrypto/Cipher/Mode/CBC.h
@@ -119,6 +119,7 @@ namespace Cipher {
                 length -= block_size;
                 offset += block_size;
             }
+            out.trim(offset);
             this->prune_padding(out);
         }
     };
diff --git a/Userland/Makefile b/Userland/Makefile
index 0a0da33535..03cd975e5f 100644
--- a/Userland/Makefile
+++ b/Userland/Makefile
@@ -4,7 +4,7 @@ APPS = ${SRCS:.cpp=}
 
 EXTRA_CLEAN = $(APPS)
 
-LIB_DEPS = Web GUI Gfx Audio Protocol IPC Thread Pthread PCIDB Markdown JS Core Line X86 Debug
+LIB_DEPS = Crypto TLS Web GUI Gfx Audio Protocol IPC Thread Pthread PCIDB Markdown JS Core Line X86 Debug
 
 include ../Makefile.common
 
diff --git a/Userland/test-crypto.cpp b/Userland/test-crypto.cpp
index 35d9e14c61..2c97afb57f 100644
--- a/Userland/test-crypto.cpp
+++ b/Userland/test-crypto.cpp
@@ -1,5 +1,6 @@
 #include <LibC/limits.h>
 #include <LibCore/ArgsParser.h>
+#include <LibCore/EventLoop.h>
 #include <LibCore/File.h>
 #include <LibCrypto/Authentication/HMAC.h>
 #include <LibCrypto/BigInt/UnsignedBigInteger.h>
@@ -8,6 +9,7 @@
 #include <LibCrypto/Hash/SHA2.h>
 #include <LibCrypto/PK/RSA.h>
 #include <LibLine/Editor.h>
+#include <LibTLS/TLSv12.h>
 #include <stdio.h>
 
 static const char* secret_key = "WellHelloFreinds";
@@ -41,6 +43,9 @@ int hmac_sha512_tests();
 // Public-Key
 int rsa_tests();
 
+// TLS
+int tls_tests();
+
 // Big Integer
 int bigint_tests();
 
@@ -196,6 +201,7 @@ auto main(int argc, char** argv) -> int
         puts("these modes only contain tests");
         puts("\tbigint -- Run big integer test suite");
         puts("\tpk -- Run Public-key system tests");
+        puts("\ttls -- Run TLS tests");
         return 0;
     }
 
@@ -251,6 +257,9 @@ auto main(int argc, char** argv) -> int
     if (mode_sv == "bigint") {
         return bigint_tests();
     }
+    if (mode_sv == "tls") {
+        return tls_tests();
+    }
     encrypting = mode_sv == "encrypt";
     if (encrypting || mode_sv == "decrypt") {
         if (suite == nullptr)
@@ -324,6 +333,8 @@ void rsa_test_encrypt_decrypt();
 void rsa_emsa_pss_test_create();
 void bigint_test_number_theory(); // FIXME: we should really move these num theory stuff out
 
+void tls_test_client_hello();
+
 void bigint_test_fibo500();
 void bigint_addition_edgecases();
 void bigint_subtraction();
@@ -968,6 +979,56 @@ void rsa_test_encrypt_decrypt()
     }
 }
 
+int tls_tests()
+{
+    tls_test_client_hello();
+    return 0;
+}
+
+void tls_test_client_hello()
+{
+    I_TEST((TLS | Connect and Data Transfer));
+    Core::EventLoop loop;
+    RefPtr<TLS::TLSv12> tls = TLS::TLSv12::construct(nullptr);
+    bool sent_request = false;
+    ByteBuffer contents = ByteBuffer::create_uninitialized(0);
+    tls->on_tls_ready_to_write = [&](TLS::TLSv12& tls) {
+        if (sent_request)
+            return;
+        sent_request = true;
+        if (!tls.write("GET /SerenityOS/serenity HTTP/1.1\r\nHost: github.com\r\nConnection: close\r\n\r\n"_b)) {
+            FAIL(write() failed);
+            loop.quit(0);
+        }
+    };
+    tls->on_tls_ready_to_read = [&](TLS::TLSv12& tls) {
+        auto data = tls.read();
+        if (!data.has_value()) {
+            FAIL(No data received);
+            loop.quit(1);
+        } else {
+            //            print_buffer(data.value(), 16);
+            contents.append(data.value().data(), data.value().size());
+        }
+    };
+    tls->on_tls_finished = [&] {
+        PASS;
+        auto file = Core::File::open("foo.response", Core::IODevice::WriteOnly);
+        file->write(contents);
+        file->close();
+        loop.quit(0);
+    };
+    tls->on_tls_error = [&](TLS::AlertDescription) {
+        FAIL(Connection failure);
+        loop.quit(1);
+    };
+    if (!tls->connect("github.com", 443)) {
+        FAIL(connect() failed);
+        return;
+    }
+    loop.exec();
+}
+
 int bigint_tests()
 {
     bigint_test_fibo500();
author	AnotherTest <ali.mpfard@gmail.com>	2020-04-29 19:26:52 +0430
committer	Andreas Kling <kling@serenityos.org>	2020-05-02 12:24:10 +0200
commit	2247036acfbdb9de01109f858aa62fde85056217 (patch)
tree	385064c38f68f58706b4453e17334149613f18ce
parent	7eb72c72e85bd52c27aace2a68f4231305f94da7 (diff)
download	serenity-2247036acfbdb9de01109f858aa62fde85056217.zip