Joseph Doherty
fe2a6db786
rust / build / test / clippy / fmt (push) Has been cancelled
Layout:
- src/ .NET 10 x64 reference: MxNativeCodec, MxNativeClient,
MxAsbClient, probes, tests, harnesses. Executable spec.
- design/ Architectural plan for the Rust port (M0–M6), error
model, protocol invariants, risks (R1–R16), adversarial
review log (review.md).
- rust/ Rust workspace. M0 skeleton + M1 codec parity.
mxaccess-codec: 215 unit tests + 2 cross-implementation
parity tests (byte-identical against .NET reference).
Other crates are M0 stubs awaiting M2+.
- captures/ Frida + netsh + pcap evidence per CLAUDE.md
("captures are evidence, not throwaway logs").
- analysis/ Decompiled C# (frida/proxy/decompiled-*),
Ghidra exports for native DLLs (`exports/` only —
working state at `projects/` and AVEVA's input
binaries at `input/` are gitignored).
- docs/ Reverse-engineering reference docs.
- tools/ Setup-LiveProbeEnv.ps1 (Infisical credential fetcher),
Compute-Crc.ps1 (.NET parity helper).
- .github/workflows/ Rust CI: fmt + build + test + clippy on Windows.
- LICENSE MIT (Joseph Doherty, 2026).
Verified:
- cargo test --workspace → 217 passed (215 unit + 2 .NET parity), 0 failed
- cargo clippy --workspace -- -D warnings → clean
- cargo fmt --all -- --check → clean
- cargo publish --dry-run -p mxaccess-codec → packages cleanly
Excluded from history (see .gitignore):
- **/bin, **/obj, **/target — build artifacts
- analysis/ghidra/projects/ — Ghidra working state (regenerable)
- analysis/ghidra/input/ — AVEVA proprietary DLLs (vendor IP)
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
168 lines
5.4 KiB
C#
168 lines
5.4 KiB
C#
using System.IO.Compression;
|
|
using System.Numerics;
|
|
using System.Security.Cryptography;
|
|
using System.Text;
|
|
|
|
namespace MxAsbClient;
|
|
|
|
internal sealed class AsbSystemAuthenticator
|
|
{
|
|
private static readonly byte[] PasswordSalt = Encoding.ASCII.GetBytes("ArchestrAService");
|
|
private readonly BigInteger dhPrime;
|
|
private readonly BigInteger dhGenerator;
|
|
private readonly string hashAlgorithm;
|
|
private readonly int keySize;
|
|
private readonly byte[] solutionPassphrase;
|
|
private readonly byte[] privateKey;
|
|
private readonly byte[] localPublicKey;
|
|
private byte[] remotePublicKey = [];
|
|
private ulong nextMessageNumber = 1;
|
|
|
|
public AsbSystemAuthenticator(string passphrase, AsbSolutionCryptoParameters cryptoParameters, Action<string>? trace = null)
|
|
{
|
|
dhPrime = cryptoParameters.Prime;
|
|
dhGenerator = cryptoParameters.Generator;
|
|
hashAlgorithm = cryptoParameters.HashAlgorithm;
|
|
keySize = cryptoParameters.KeySize;
|
|
trace?.Invoke("asb.stage=authenticator-passphrase-bytes");
|
|
solutionPassphrase = Encoding.UTF8.GetBytes(passphrase);
|
|
trace?.Invoke("asb.stage=authenticator-create-private");
|
|
BigInteger privateKeyValue = CreatePrivateKey();
|
|
trace?.Invoke("asb.stage=authenticator-private-ready");
|
|
privateKey = privateKeyValue.ToByteArray();
|
|
trace?.Invoke("asb.stage=authenticator-modpow");
|
|
localPublicKey = BigInteger.ModPow(dhGenerator, privateKeyValue, dhPrime).ToByteArray();
|
|
trace?.Invoke("asb.stage=authenticator-public-ready");
|
|
ConnectionId = Guid.NewGuid();
|
|
}
|
|
|
|
public Guid ConnectionId { get; }
|
|
|
|
public byte[] LocalPublicKey => localPublicKey;
|
|
|
|
public bool UseApolloSigning { get; private set; }
|
|
|
|
public void AcceptConnectResponse(ConnectResponse response)
|
|
{
|
|
remotePublicKey = response.ServicePublicKey?.Data ?? throw new InvalidOperationException("ASB connect response did not contain a service public key.");
|
|
UseApolloSigning = response.ConnectionLifetime?.Contains(":V2", StringComparison.OrdinalIgnoreCase) == true;
|
|
}
|
|
|
|
public AuthenticationData CreateAuthenticationData()
|
|
{
|
|
byte[] clear = [.. localPublicKey, .. remotePublicKey];
|
|
byte[] encrypted = Encrypt(clear, out byte[] iv);
|
|
return new AuthenticationData
|
|
{
|
|
Data = encrypted,
|
|
InitializationVector = iv,
|
|
};
|
|
}
|
|
|
|
public void Sign(ConnectedRequest request, bool forceHmac = false)
|
|
{
|
|
ConnectionValidator validator = new()
|
|
{
|
|
ConnectionId = ConnectionId,
|
|
MessageNumber = nextMessageNumber++,
|
|
MessageAuthenticationCode = [],
|
|
SignatureInitializationVector = [],
|
|
};
|
|
|
|
request.ConnectionValidator = validator;
|
|
using HMAC? hmac = CreateHmac(forceHmac);
|
|
if (hmac is null)
|
|
{
|
|
return;
|
|
}
|
|
|
|
byte[] hash = hmac.ComputeHash(Encoding.UTF8.GetBytes(request.ToXml()));
|
|
validator.MessageAuthenticationCode = Encrypt(hash, out byte[] iv);
|
|
validator.SignatureInitializationVector = iv;
|
|
}
|
|
|
|
private HMAC? CreateHmac(bool forceHmac)
|
|
{
|
|
return hashAlgorithm.ToLowerInvariant() switch
|
|
{
|
|
"md5" => new HMACMD5(CryptoKey),
|
|
"sha1" => new HMACSHA1(CryptoKey),
|
|
"sha512" => new HMACSHA512(CryptoKey),
|
|
_ => forceHmac ? new HMACSHA1(CryptoKey) : null,
|
|
};
|
|
}
|
|
|
|
private byte[] Encrypt(byte[] clear, out byte[] iv)
|
|
{
|
|
if (UseApolloSigning)
|
|
{
|
|
return EncryptApollo(clear, out iv);
|
|
}
|
|
|
|
return EncryptBaktun(clear, out iv);
|
|
}
|
|
|
|
private byte[] EncryptApollo(byte[] clear, out byte[] iv)
|
|
{
|
|
using Aes aes = Aes.Create();
|
|
aes.Key = DeriveAesKey();
|
|
iv = aes.IV;
|
|
using MemoryStream output = new();
|
|
using (CryptoStream crypto = new(output, aes.CreateEncryptor(), CryptoStreamMode.Write))
|
|
{
|
|
crypto.Write(clear, 0, clear.Length);
|
|
}
|
|
|
|
return output.ToArray();
|
|
}
|
|
|
|
private byte[] EncryptBaktun(byte[] clear, out byte[] iv)
|
|
{
|
|
using Aes aes = Aes.Create();
|
|
aes.Key = DeriveAesKey();
|
|
iv = aes.IV;
|
|
using MemoryStream output = new();
|
|
using (CryptoStream crypto = new(output, aes.CreateEncryptor(), CryptoStreamMode.Write))
|
|
{
|
|
using DeflateStream deflate = new(crypto, CompressionMode.Compress);
|
|
deflate.Write(clear, 0, clear.Length);
|
|
}
|
|
|
|
return output.ToArray();
|
|
}
|
|
|
|
private byte[] DeriveAesKey()
|
|
{
|
|
return Rfc2898DeriveBytes.Pbkdf2(
|
|
Convert.ToBase64String(CryptoKey),
|
|
PasswordSalt,
|
|
iterations: 1000,
|
|
HashAlgorithmName.SHA1,
|
|
outputLength: 16);
|
|
}
|
|
|
|
private byte[] CryptoKey
|
|
{
|
|
get
|
|
{
|
|
byte[] shared = BigInteger.ModPow(new BigInteger(remotePublicKey), new BigInteger(privateKey), dhPrime).ToByteArray();
|
|
return [.. shared, .. solutionPassphrase];
|
|
}
|
|
}
|
|
|
|
private BigInteger CreatePrivateKey()
|
|
{
|
|
byte[] bytes = new byte[(keySize / 8) + 1];
|
|
BigInteger value;
|
|
do
|
|
{
|
|
RandomNumberGenerator.Fill(bytes);
|
|
bytes[^1] = 0;
|
|
value = new BigInteger(bytes);
|
|
}
|
|
while (value <= BigInteger.Zero || value >= dhPrime - BigInteger.One);
|
|
|
|
return value;
|
|
}
|
|
}
|