2019-04-17 23:01:07 +03:00
|
|
|
|
using Bit.Core.Abstractions;
|
|
|
|
|
using Bit.Core.Enums;
|
|
|
|
|
using Bit.Core.Utilities;
|
|
|
|
|
using System;
|
|
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
|
|
|
|
|
namespace Bit.Core.Services
|
|
|
|
|
{
|
|
|
|
|
public class TotpService : ITotpService
|
|
|
|
|
{
|
|
|
|
|
private const string SteamChars = "23456789BCDFGHJKMNPQRTVWXY";
|
|
|
|
|
|
|
|
|
|
private readonly IStorageService _storageService;
|
|
|
|
|
private readonly ICryptoFunctionService _cryptoFunctionService;
|
|
|
|
|
|
|
|
|
|
public TotpService(
|
|
|
|
|
IStorageService storageService,
|
|
|
|
|
ICryptoFunctionService cryptoFunctionService)
|
|
|
|
|
{
|
|
|
|
|
_storageService = storageService;
|
|
|
|
|
_cryptoFunctionService = cryptoFunctionService;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public async Task<string> GetCodeAsync(string key)
|
|
|
|
|
{
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (string.IsNullOrWhiteSpace(key))
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
var period = 30;
|
|
|
|
|
var alg = CryptoHashAlgorithm.Sha1;
|
|
|
|
|
var digits = 6;
|
|
|
|
|
var keyB32 = key;
|
|
|
|
|
|
|
|
|
|
var isOtpAuth = key?.ToLowerInvariant().StartsWith("otpauth://") ?? false;
|
|
|
|
|
var isSteamAuth = key?.ToLowerInvariant().StartsWith("steam://") ?? false;
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (isOtpAuth)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
var qsParams = CoreHelpers.GetQueryParams(key);
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (qsParams.ContainsKey("digits") && qsParams["digits"] != null &&
|
2019-04-17 23:01:07 +03:00
|
|
|
|
int.TryParse(qsParams["digits"].Trim(), out var digitParam))
|
|
|
|
|
{
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (digitParam > 10)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
digits = 10;
|
|
|
|
|
}
|
2020-03-28 16:16:28 +03:00
|
|
|
|
else if (digitParam > 0)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
digits = digitParam;
|
|
|
|
|
}
|
|
|
|
|
}
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (qsParams.ContainsKey("period") && qsParams["period"] != null &&
|
2019-04-17 23:01:07 +03:00
|
|
|
|
int.TryParse(qsParams["period"].Trim(), out var periodParam) && periodParam > 0)
|
|
|
|
|
{
|
|
|
|
|
period = periodParam;
|
|
|
|
|
}
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (qsParams.ContainsKey("secret") && qsParams["secret"] != null)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
keyB32 = qsParams["secret"];
|
|
|
|
|
}
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (qsParams.ContainsKey("algorithm") && qsParams["algorithm"] != null)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
var algParam = qsParams["algorithm"].ToLowerInvariant();
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (algParam == "sha256")
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
alg = CryptoHashAlgorithm.Sha256;
|
|
|
|
|
}
|
2020-03-28 16:16:28 +03:00
|
|
|
|
else if (algParam == "sha512")
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
alg = CryptoHashAlgorithm.Sha512;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2020-03-28 16:16:28 +03:00
|
|
|
|
else if (isSteamAuth)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
digits = 5;
|
|
|
|
|
keyB32 = key.Substring(8);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var keyBytes = Base32.FromBase32(keyB32);
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (keyBytes == null || keyBytes.Length == 0)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
var now = CoreHelpers.EpocUtcNow() / 1000;
|
|
|
|
|
var time = now / period;
|
|
|
|
|
var timeBytes = BitConverter.GetBytes(time);
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (BitConverter.IsLittleEndian)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
Array.Reverse(timeBytes, 0, timeBytes.Length);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var hash = await _cryptoFunctionService.HmacAsync(timeBytes, keyBytes, alg);
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (hash.Length == 0)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var offset = (hash[hash.Length - 1] & 0xf);
|
|
|
|
|
var binary = ((hash[offset] & 0x7f) << 24) | ((hash[offset + 1] & 0xff) << 16) |
|
|
|
|
|
((hash[offset + 2] & 0xff) << 8) | (hash[offset + 3] & 0xff);
|
|
|
|
|
|
|
|
|
|
string otp = string.Empty;
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (isSteamAuth)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
var fullCode = binary & 0x7fffffff;
|
2020-03-28 16:16:28 +03:00
|
|
|
|
for (var i = 0; i < digits; i++)
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
otp += SteamChars[fullCode % SteamChars.Length];
|
|
|
|
|
fullCode = (int)Math.Truncate(fullCode / (double)SteamChars.Length);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
var rawOtp = binary % (int)Math.Pow(10, digits);
|
|
|
|
|
otp = rawOtp.ToString().PadLeft(digits, '0');
|
|
|
|
|
}
|
|
|
|
|
return otp;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public int GetTimeInterval(string key)
|
|
|
|
|
{
|
|
|
|
|
var period = 30;
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (key != null && key.ToLowerInvariant().StartsWith("otpauth://"))
|
2019-04-17 23:01:07 +03:00
|
|
|
|
{
|
|
|
|
|
var qsParams = CoreHelpers.GetQueryParams(key);
|
2020-03-28 16:16:28 +03:00
|
|
|
|
if (qsParams.ContainsKey("period") && qsParams["period"] != null &&
|
2019-04-17 23:01:07 +03:00
|
|
|
|
int.TryParse(qsParams["period"].Trim(), out var periodParam) && periodParam > 0)
|
|
|
|
|
{
|
|
|
|
|
period = periodParam;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return period;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public async Task<bool> IsAutoCopyEnabledAsync()
|
|
|
|
|
{
|
|
|
|
|
var disabled = await _storageService.GetAsync<bool?>(Constants.DisableAutoTotpCopyKey);
|
|
|
|
|
return !disabled.GetValueOrDefault();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|