首頁 探索 說明
登入
mirrors
/
mailcow-dockerized
镜像来自 https://github.com/mailcow/mailcow-dockerized
2
0
複刻 0
檔案 問題管理 0 Wiki
目錄樹: 355ea71877
分支列表 標籤列表
mailcow-dockeri...
/
data
/
web
/
inc
/
lib
/
WebAuthn
/
Attestation
/
Format
/
AndroidSafetyNet.php

AndroidSafetyNet.php 5.2 KB
文件歷史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141 
  1. <?php
    2. 

  2. 

  3. 

  4. namespace lbuchs\WebAuthn\Attestation\Format;
    5. 

  5. use lbuchs\WebAuthn\Attestation\AuthenticatorData;
    6. 

  6. use lbuchs\WebAuthn\WebAuthnException;
    7. 

  7. use lbuchs\WebAuthn\Binary\ByteBuffer;
    8. 

  8. 

  9. class AndroidSafetyNet extends FormatBase {
    10. 

  10.     private $_signature;
    11. 

  11.     private $_signedValue;
    12. 

  12.     private $_x5c;
    13. 

  13.     private $_payload;
    14. 

  14. 

  15.     public function __construct($AttestionObject, AuthenticatorData $authenticatorData) {
    16. 

  16.         parent::__construct($AttestionObject, $authenticatorData);
    17. 

  17. 

  18.         // check data
    19. 

  19.         $attStmt = $this->_attestationObject['attStmt'];
    20. 

  20. 

  21.         if (!\array_key_exists('ver', $attStmt) || !$attStmt['ver']) {
    22. 

  22.             throw new WebAuthnException('invalid Android Safety Net Format', WebAuthnException::INVALID_DATA);
    23. 

  23.         }
    24. 

  24. 

  25.         if (!\array_key_exists('response', $attStmt) || !($attStmt['response'] instanceof ByteBuffer)) {
    26. 

  26.             throw new WebAuthnException('invalid Android Safety Net Format', WebAuthnException::INVALID_DATA);
    27. 

  27.         }
    28. 

  28. 

  29.         $response = $attStmt['response']->getBinaryString();
    30. 

  30. 

  31.         // Response is a JWS [RFC7515] object in Compact Serialization.
    32. 

  32.         // JWSs have three segments separated by two period ('.') characters
    33. 

  33.         $parts = \explode('.', $response);
    34. 

  34.         unset ($response);
    35. 

  35.         if (\count($parts) !== 3) {
    36. 

  36.             throw new WebAuthnException('invalid JWS data', WebAuthnException::INVALID_DATA);
    37. 

  37.         }
    38. 

  38. 

  39.         $header = $this->_base64url_decode($parts[0]);
    40. 

  40.         $payload = $this->_base64url_decode($parts[1]);
    41. 

  41.         $this->_signature = $this->_base64url_decode($parts[2]);
    42. 

  42.         $this->_signedValue = $parts[0] . '.' . $parts[1];
    43. 

  43.         unset ($parts);
    44. 

  44. 

  45.         $header = \json_decode($header);
    46. 

  46.         $payload = \json_decode($payload);
    47. 

  47. 

  48.         if (!($header instanceof \stdClass)) {
    49. 

  49.             throw new WebAuthnException('invalid JWS header', WebAuthnException::INVALID_DATA);
    50. 

  50.         }
    51. 

  51.         if (!($payload instanceof \stdClass)) {
    52. 

  52.             throw new WebAuthnException('invalid JWS payload', WebAuthnException::INVALID_DATA);
    53. 

  53.         }
    54. 

  54. 

  55.         if (!$header->x5c || !is_array($header->x5c) || count($header->x5c) === 0) {
    56. 

  56.             throw new WebAuthnException('No X.509 signature in JWS Header', WebAuthnException::INVALID_DATA);
    57. 

  57.         }
    58. 

  58. 

  59.         // algorithm
    60. 

  60.         if (!\in_array($header->alg, array('RS256', 'ES256'))) {
    61. 

  61.             throw new WebAuthnException('invalid JWS algorithm ' . $header->alg, WebAuthnException::INVALID_DATA);
    62. 

  62.         }
    63. 

  63. 

  64.         $this->_x5c = \base64_decode($header->x5c[0]);
    65. 

  65.         $this->_payload = $payload;
    66. 

  66. 

  67.         if (count($header->x5c) > 1) {
    68. 

  68.             for ($i=1; $i<count($header->x5c); $i++) {
    69. 

  69.                 $this->_x5c_chain[] = \base64_decode($header->x5c[$i]);
    70. 

  70.             }
    71. 

  71.             unset ($i);
    72. 

  72.         }
    73. 

  73.     }
    74. 

  74. 

  75. 

  76.     /*
    77. 

  77.      * returns the key certificate in PEM format
    78. 

  78.      * @return string
    79. 

  79.      */
    80. 

  80.     public function getCertificatePem() {
    81. 

  81.         return $this->_createCertificatePem($this->_x5c);
    82. 

  82.     }
    83. 

  83. 

  84.     /**
    85. 

  85.      * @param string $clientDataHash
    86. 

  86.      */
    87. 

  87.     public function validateAttestation($clientDataHash) {
    88. 

  88.         $publicKey = \openssl_pkey_get_public($this->getCertificatePem());
    89. 

  89. 

  90.         // Verify that the nonce in the response is identical to the Base64 encoding
    91. 

  91.         // of the SHA-256 hash of the concatenation of authenticatorData and clientDataHash.
    92. 

  92.         if (!$this->_payload->nonce || $this->_payload->nonce !== \base64_encode(\hash('SHA256', $this->_authenticatorData->getBinary() . $clientDataHash, true))) {
    93. 

  93.             throw new WebAuthnException('invalid nonce in JWS payload', WebAuthnException::INVALID_DATA);
    94. 

  94.         }
    95. 

  95. 

  96.         // Verify that attestationCert is issued to the hostname "attest.android.com"
    97. 

  97.         $certInfo = \openssl_x509_parse($this->getCertificatePem());
    98. 

  98.         if (!\is_array($certInfo) || !$certInfo['subject'] || $certInfo['subject']['CN'] !== 'attest.android.com') {
    99. 

  99.             throw new WebAuthnException('invalid certificate CN in JWS (' . $certInfo['subject']['CN']. ')', WebAuthnException::INVALID_DATA);
    100. 

  100.         }
    101. 

  101. 

  102.         // Verify that the ctsProfileMatch attribute in the payload of response is true.
    103. 

  103.         if (!$this->_payload->ctsProfileMatch) {
    104. 

  104.             throw new WebAuthnException('invalid ctsProfileMatch in payload', WebAuthnException::INVALID_DATA);
    105. 

  105.         }
    106. 

  106. 

  107.         // check certificate
    108. 

  108.         return \openssl_verify($this->_signedValue, $this->_signature, $publicKey, OPENSSL_ALGO_SHA256) === 1;
    109. 

  109.     }
    110. 

  110. 

  111. 

  112.     /**
    113. 

  113.      * validates the certificate against root certificates
    114. 

  114.      * @param array $rootCas
    115. 

  115.      * @return boolean
    116. 

  116.      * @throws WebAuthnException
    117. 

  117.      */
    118. 

  118.     public function validateRootCertificate($rootCas) {
    119. 

  119.         $chainC = $this->_createX5cChainFile();
    120. 

  120.         if ($chainC) {
    121. 

  121.             $rootCas[] = $chainC;
    122. 

  122.         }
    123. 

  123. 

  124.         $v = \openssl_x509_checkpurpose($this->getCertificatePem(), -1, $rootCas);
    125. 

  125.         if ($v === -1) {
    126. 

  126.             throw new WebAuthnException('error on validating root certificate: ' . \openssl_error_string(), WebAuthnException::CERTIFICATE_NOT_TRUSTED);
    127. 

  127.         }
    128. 

  128.         return $v;
    129. 

  129.     }
    130. 

  130. 

  131. 

  132.     /**
    133. 

  133.      * decode base64 url
    134. 

  134.      * @param string $data
    135. 

  135.      * @return string
    136. 

  136.      */
    137. 

  137.     private function _base64url_decode($data) {
    138. 

  138.         return \base64_decode(\strtr($data, '-_', '+/') . \str_repeat('=', 3 - (3 + \strlen($data)) % 4));
    139. 

  139.     }
    140. 

  140. }
    141. 

  141.