Inicio Explorar Axuda
Iniciar sesión
mirrors
/
jellyfin
réplica de https://github.com/jellyfin/jellyfin
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Árbore: e7c05dcfaf
Ramas Etiquetas
jellyfin
/
Emby.Server.Implementations
/
Cryptography
/
CryptographyProvider.cs

CryptographyProvider.cs 6.1 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180 
  1. using System;
    2. 

  2. using System.Collections.Generic;
    3. 

  3. using System.Globalization;
    4. 

  4. using System.IO;
    5. 

  5. using System.Security.Cryptography;
    6. 

  6. using System.Text;
    7. 

  7. using MediaBrowser.Model.Cryptography;
    8. 

  8. 

  9. namespace Emby.Server.Implementations.Cryptography
    10. 

  10. {
    11. 

  11.     public class CryptographyProvider : ICryptoProvider, IDisposable
    12. 

  12.     {
    13. 

  13.         private static readonly HashSet<string> _supportedHashMethods = new HashSet<string>()
    14. 

  14.             {
    15. 

  15.                 "MD5",
    16. 

  16.                 "System.Security.Cryptography.MD5",
    17. 

  17.                 "SHA",
    18. 

  18.                 "SHA1",
    19. 

  19.                 "System.Security.Cryptography.SHA1",
    20. 

  20.                 "SHA256",
    21. 

  21.                 "SHA-256",
    22. 

  22.                 "System.Security.Cryptography.SHA256",
    23. 

  23.                 "SHA384",
    24. 

  24.                 "SHA-384",
    25. 

  25.                 "System.Security.Cryptography.SHA384",
    26. 

  26.                 "SHA512",
    27. 

  27.                 "SHA-512",
    28. 

  28.                 "System.Security.Cryptography.SHA512"
    29. 

  29.             };
    30. 

  30. 

  31.         private RandomNumberGenerator _randomNumberGenerator;
    32. 

  32. 

  33.         private const int _defaultIterations = 1000;
    34. 

  34. 

  35.         private bool _disposed = false;
    36. 

  36. 

  37.         public CryptographyProvider()
    38. 

  38.         {
    39. 

  39.             // FIXME: When we get DotNet Standard 2.1 we need to revisit how we do the crypto
    40. 

  40.             // Currently supported hash methods from https://docs.microsoft.com/en-us/dotnet/api/system.security.cryptography.cryptoconfig?view=netcore-2.1
    41. 

  41.             // there might be a better way to autogenerate this list as dotnet updates, but I couldn't find one
    42. 

  42.             // Please note the default method of PBKDF2 is not included, it cannot be used to generate hashes cleanly as it is actually a pbkdf with sha1
    43. 

  43.             _randomNumberGenerator = RandomNumberGenerator.Create();
    44. 

  44.         }
    45. 

  45. 

  46.         public string DefaultHashMethod => "PBKDF2";
    47. 

  47. 

  48.         [Obsolete("Use System.Security.Cryptography.MD5 directly")]
    49. 

  49.         public Guid GetMD5(string str)
    50. 

  50.             => new Guid(ComputeMD5(Encoding.Unicode.GetBytes(str)));
    51. 

  51. 

  52.         [Obsolete("Use System.Security.Cryptography.SHA1 directly")]
    53. 

  53.         public byte[] ComputeSHA1(byte[] bytes)
    54. 

  54.         {
    55. 

  55.             using (var provider = SHA1.Create())
    56. 

  56.             {
    57. 

  57.                 return provider.ComputeHash(bytes);
    58. 

  58.             }
    59. 

  59.         }
    60. 

  60. 

  61.         [Obsolete("Use System.Security.Cryptography.MD5 directly")]
    62. 

  62.         public byte[] ComputeMD5(Stream str)
    63. 

  63.         {
    64. 

  64.             using (var provider = MD5.Create())
    65. 

  65.             {
    66. 

  66.                 return provider.ComputeHash(str);
    67. 

  67.             }
    68. 

  68.         }
    69. 

  69. 

  70.         [Obsolete("Use System.Security.Cryptography.MD5 directly")]
    71. 

  71.         public byte[] ComputeMD5(byte[] bytes)
    72. 

  72.         {
    73. 

  73.             using (var provider = MD5.Create())
    74. 

  74.             {
    75. 

  75.                 return provider.ComputeHash(bytes);
    76. 

  76.             }
    77. 

  77.         }
    78. 

  78. 

  79.         public IEnumerable<string> GetSupportedHashMethods()
    80. 

  80.             => _supportedHashMethods;
    81. 

  81. 

  82.         private byte[] PBKDF2(string method, byte[] bytes, byte[] salt, int iterations)
    83. 

  83.         {
    84. 

  84.             //downgrading for now as we need this library to be dotnetstandard compliant
    85. 

  85.             //with this downgrade we'll add a check to make sure we're on the downgrade method at the moment
    86. 

  86.             if (method == DefaultHashMethod)
    87. 

  87.             {
    88. 

  88.                 using (var r = new Rfc2898DeriveBytes(bytes, salt, iterations))
    89. 

  89.                 {
    90. 

  90.                     return r.GetBytes(32);
    91. 

  91.                 }
    92. 

  92.             }
    93. 

  93. 

  94.             throw new CryptographicException($"Cannot currently use PBKDF2 with requested hash method: {method}");
    95. 

  95.         }
    96. 

  96. 

  97.         public byte[] ComputeHash(string hashMethod, byte[] bytes)
    98. 

  98.             => ComputeHash(hashMethod, bytes, Array.Empty<byte>());
    99. 

  99. 

  100.         public byte[] ComputeHashWithDefaultMethod(byte[] bytes)
    101. 

  101.             => ComputeHash(DefaultHashMethod, bytes);
    102. 

  102. 

  103.         public byte[] ComputeHash(string hashMethod, byte[] bytes, byte[] salt)
    104. 

  104.         {
    105. 

  105.             if (hashMethod == DefaultHashMethod)
    106. 

  106.             {
    107. 

  107.                 return PBKDF2(hashMethod, bytes, salt, _defaultIterations);
    108. 

  108.             }
    109. 

  109.             else if (_supportedHashMethods.Contains(hashMethod))
    110. 

  110.             {
    111. 

  111.                 using (var h = HashAlgorithm.Create(hashMethod))
    112. 

  112.                 {
    113. 

  113.                     if (salt.Length == 0)
    114. 

  114.                     {
    115. 

  115.                         return h.ComputeHash(bytes);
    116. 

  116.                     }
    117. 

  117.                     else
    118. 

  118.                     {
    119. 

  119.                         byte[] salted = new byte[bytes.Length + salt.Length];
    120. 

  120.                         Array.Copy(bytes, salted, bytes.Length);
    121. 

  121.                         Array.Copy(salt, 0, salted, bytes.Length, salt.Length);
    122. 

  122.                         return h.ComputeHash(salted);
    123. 

  123.                     }
    124. 

  124.                 }
    125. 

  125.             }
    126. 

  126. 

  127.             throw new CryptographicException($"Requested hash method is not supported: {hashMethod}");
    128. 

  128. 

  129.         }
    130. 

  130. 

  131.         public byte[] ComputeHashWithDefaultMethod(byte[] bytes, byte[] salt)
    132. 

  132.             => PBKDF2(DefaultHashMethod, bytes, salt, _defaultIterations);
    133. 

  133. 

  134.         public byte[] ComputeHash(PasswordHash hash)
    135. 

  135.         {
    136. 

  136.             int iterations = _defaultIterations;
    137. 

  137.             if (!hash.Parameters.ContainsKey("iterations"))
    138. 

  138.             {
    139. 

  139.                 hash.Parameters.Add("iterations", iterations.ToString(CultureInfo.InvariantCulture));
    140. 

  140.             }
    141. 

  141.             else if (!int.TryParse(hash.Parameters["iterations"], out iterations))
    142. 

  142.             {
    143. 

  143.                 throw new InvalidDataException($"Couldn't successfully parse iterations value from string: {hash.Parameters["iterations"]}");
    144. 

  144.             }
    145. 

  145. 

  146.             return PBKDF2(hash.Id, hash.Hash, hash.Salt, iterations);
    147. 

  147.         }
    148. 

  148. 

  149.         public byte[] GenerateSalt()
    150. 

  150.         {
    151. 

  151.             byte[] salt = new byte[64];
    152. 

  152.             _randomNumberGenerator.GetBytes(salt);
    153. 

  153.             return salt;
    154. 

  154.         }
    155. 

  155. 

  156.         /// <inheritdoc />
    157. 

  157.         public void Dispose()
    158. 

  158.         {
    159. 

  159.             Dispose(true);
    160. 

  160.             GC.SuppressFinalize(this);
    161. 

  161.         }
    162. 

  162. 

  163.         protected virtual void Dispose(bool disposing)
    164. 

  164.         {
    165. 

  165.             if (_disposed)
    166. 

  166.             {
    167. 

  167.                 return;
    168. 

  168.             }
    169. 

  169. 

  170.             if (disposing)
    171. 

  171.             {
    172. 

  172.                 _randomNumberGenerator.Dispose();
    173. 

  173.             }
    174. 

  174. 

  175.             _randomNumberGenerator = null;
    176. 

  176. 

  177.             _disposed = true;
    178. 

  178.         }
    179. 

  179.     }
    180. 

  180. }
    181.