登录 注册
开源 企业版 高校版 私有云 模力方舟 模力方舟
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 0 Fork 0

wlhet/orago

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
data_integrity_service.go 4.67 KB
一键复制 编辑 原始数据 按行查看 历史
wlhet 提交于 2023-02-10 15:17 +08:00 . 对应 go-ora v2.5.27
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157
package advanced_nego



import (

	"crypto"

	"crypto/md5"

	"crypto/rand"

	"errors"

	"fmt"

	"math/big"



	"gitee.com/wlhet/orago/network/security"

)



type dataIntegrityService struct {

	defaultService

	algoID    int

	publicKey []byte

	sharedKey []byte

	iV        []byte

}



func NewDataIntegrityService(comm *AdvancedNegoComm) (*dataIntegrityService, error) {

	output := &dataIntegrityService{

		defaultService: defaultService{

			comm:                  comm,

			serviceType:           3,

			version:               0xB200200,

			availableServiceNames: []string{"", "MD5", "SHA1", "SHA512", "SHA256", "SHA384"},

			availableServiceIDs:   []int{0, 1, 3, 4, 5, 6},

		},

	}

	err := output.buildServiceList([]string{}, true, true)

	//output.selectedServ, err = output.validate(strings.Split(str,","), true)

	if err != nil {

		return nil, err

	}

	return output, nil

}



func (serv *dataIntegrityService) readServiceData(subPacketNum int) error {

	var err error

	comm := serv.comm

	serv.version, err = comm.readVersion()

	if err != nil {

		return err

	}

	resp, err := comm.readUB1()

	if err != nil {

		return err

	}

	serv.algoID = int(resp)

	if subPacketNum != 8 {

		return nil

	}

	dhGenLen, err := comm.readUB2()

	if err != nil {

		return err

	}

	dhPrimLen, err := comm.readUB2()

	if err != nil {

		return err

	}

	genBytes, err := comm.readBytes()

	if err != nil {

		return err

	}

	primeBytes, err := comm.readBytes()

	if err != nil {

		return err

	}

	serverPublicKeyBytes, err := comm.readBytes()

	if err != nil {

		return err

	}

	serv.iV, err = comm.readBytes()

	if err != nil {

		return err

	}

	if dhGenLen <= 0 || dhPrimLen <= 0 {

		return errors.New("advanced negotiation error: bad parameter from server")

	}

	byteLen := (dhGenLen + 7) / 8 // this means  if dhGroupPLen % 8 > 0 then byteLen += 1

	if len(serverPublicKeyBytes) != byteLen || len(primeBytes) != byteLen {

		return errors.New("advanced negotiation error: DiffieHellman negotiation out of sync")

	}

	privateKeyBytes := make([]byte, byteLen)

	_, err = rand.Read(privateKeyBytes)

	if err != nil {

		return errors.New("advanced negotiation error: DiffieHellman random private key")

	}

	gen := new(big.Int).SetBytes(genBytes)

	prime := new(big.Int).SetBytes(primeBytes)

	privateKey := new(big.Int).SetBytes(privateKeyBytes)

	serverPublicKey := new(big.Int).SetBytes(serverPublicKeyBytes)

	publicKey := new(big.Int).Exp(gen, privateKey, prime)

	sharedKey := new(big.Int).Exp(serverPublicKey, privateKey, prime)

	serv.publicKey = make([]byte, byteLen)

	publicKey.FillBytes(serv.publicKey)

	serv.sharedKey = make([]byte, byteLen)

	sharedKey.FillBytes(serv.sharedKey)

	tracer := comm.session.Context.ConnOption.Tracer

	tracer.Print("Diffie Hellman Keys:")

	tracer.LogPacket("Generator:", genBytes)

	tracer.LogPacket("Prime:", primeBytes)

	tracer.LogPacket("Private Key:", privateKeyBytes)

	tracer.LogPacket("Public Key:", serv.publicKey)

	tracer.LogPacket("Server Public Key:", serverPublicKeyBytes)

	tracer.LogPacket("Shared Key:", serv.sharedKey)

	return nil

}

func (serv *dataIntegrityService) writeServiceData() error {

	serv.writeHeader(2)

	comm := serv.comm

	comm.writeVersion(serv.getVersion())

	selectedIndices := make([]byte, len(serv.selectedIndices))

	for i := 0; i < len(serv.selectedIndices); i++ {

		index := serv.selectedIndices[i]

		selectedIndices[i] = uint8(serv.availableServiceIDs[index])

		//comm.session.PutBytes(uint8(serv.availableServiceIDs[index]))

	}

	comm.writeBytes(selectedIndices)

	return nil

}



func (serv *dataIntegrityService) getServiceDataLength() int {

	return 12 + len(serv.selectedIndices)

}



func (serv *dataIntegrityService) activateAlgorithm() error {

	serv.comm.session.Context.AdvancedService.SessionKey = serv.sharedKey

	serv.comm.session.Context.AdvancedService.IV = serv.iV

	//return errors.New(fmt.Sprintf("advanced negotiation error: data integrity service algorithm: %d still not supported", serv.algoID))

	var algo security.OracleNetworkDataIntegrity = nil

	var err error

	switch serv.algoID {

	case 0:

		algo = nil

	case 1:

		algo, err = security.NewOracleNetworkHash(md5.New(), serv.sharedKey, serv.iV)

	case 3:

		algo, err = security.NewOracleNetworkHash(crypto.SHA1.New(), serv.sharedKey, serv.iV)

	case 4:

		algo, err = security.NewOracleNetworkHash2(crypto.SHA512.New(), serv.sharedKey, serv.iV)

	case 5:

		algo, err = security.NewOracleNetworkHash2(crypto.SHA256.New(), serv.sharedKey, serv.iV)

	case 6:

		algo, err = security.NewOracleNetworkHash2(crypto.SHA384.New(), serv.sharedKey, serv.iV)

	default:

		err = errors.New(fmt.Sprintf("advanced negotiation error: data integrity service algorithm: %d still not supported", serv.algoID))

	}

	if err != nil {

		return err

	}

	serv.comm.session.Context.AdvancedService.HashAlgo = algo

	return nil

	// you can use also IDs

}
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/wlhet/orago.git
git@gitee.com:wlhet/orago.git
wlhet
orago
orago
v1.0.0
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部