TuBao-APP
/
TuBao-App-Android-WEN
Watch 4
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
No Description
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
Tree: 89cb0537b8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '89cb0537b8'
${ noResults }
TuBao-App-Android-WEN/Library/PackageCache/com.unity.purchasing@4.11.0/Runtime/Security/AppleValidator.cs

AppleValidator.cs 12KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303 
  1. using System;

  2. using System.Collections.Generic;

  3. using System.Globalization;

  4. using System.Linq;

  5. using LipingShare.LCLib.Asn1Processor;

  6. using System.Text;

  7. using System.Threading;

  8. 

  9. namespace UnityEngine.Purchasing.Security

  10. {

  11.     /// <summary>

  12.     /// This class will validate the Apple receipt is signed with the correct certificate.

  13.     /// </summary>

  14.     public class AppleValidator

  15.     {

  16.         private X509Cert cert;

  17.         private AppleReceiptParser parser = new AppleReceiptParser();

  18. 

  19.         /// <summary>

  20.         /// Constructs an instance with Apple Certificate.

  21.         /// </summary>

  22.         /// <param name="appleRootCertificate">The apple certificate.</param>

  23.         public AppleValidator(byte[] appleRootCertificate)

  24.         {

  25.             cert = new X509Cert(appleRootCertificate);

  26.         }

  27. 

  28.         /// <summary>

  29.         /// Validate that the Apple receipt is signed correctly.

  30.         /// </summary>

  31.         /// <param name="receiptData">The Apple receipt to validate.</param>

  32.         /// <returns>The parsed AppleReceipt</returns>

  33.         /// <exception cref="InvalidSignatureException">The exception thrown if the receipt is incorrectly signed.</exception>

  34.         public AppleReceipt Validate(byte[] receiptData)

  35.         {

  36.             PKCS7 receipt;

  37.             var result = parser.Parse(receiptData, out receipt);

  38.             if (!receipt.Verify(cert, result.receiptCreationDate))

  39.             {

  40.                 throw new InvalidSignatureException();

  41.             }

  42.             return result;

  43.         }

  44.     }

  45. 

  46.     /// <summary>

  47.     /// This class with parse the Apple receipt data received in byte[] into a AppleReceipt object

  48.     /// </summary>

  49.     public class AppleReceiptParser

  50.     {

  51.         // Cache the AppleReceipt object, PKCS7, and raw data for the most recently parsed data.

  52.         private static Dictionary<string, object> _mostRecentReceiptData = new Dictionary<string, object>();

  53.         private const string k_AppleReceiptKey = "k_AppleReceiptKey";

  54.         private const string k_PKCS7Key = "k_PKCS7Key";

  55.         private const string k_ReceiptBytesKey = "k_ReceiptBytesKey";

  56. 

  57.         /// <summary>

  58.         /// Parse the Apple receipt data into a AppleReceipt object

  59.         /// </summary>

  60.         /// <param name="receiptData">Apple receipt data</param>

  61.         /// <returns>The converted AppleReceipt object from the Apple receipt data</returns>

  62.         public AppleReceipt Parse(byte[] receiptData)

  63.         {

  64.             return Parse(receiptData, out _);

  65.         }

  66. 

  67.         internal AppleReceipt Parse(byte[] receiptData, out PKCS7 receipt)

  68.         {

  69.             // Avoid Culture-sensitive parsing for the duration of this method

  70.             CultureInfo originalCulture = PushInvariantCultureOnThread();

  71. 

  72.             try

  73.             {

  74.                 // Check to see if this receipt has been parsed before.

  75.                 // If so, return the most recent AppleReceipt and PKCS7; do not parse it again.

  76.                 if (_mostRecentReceiptData.ContainsKey(k_AppleReceiptKey) &&

  77.                     _mostRecentReceiptData.ContainsKey(k_PKCS7Key) &&

  78.                     _mostRecentReceiptData.ContainsKey(k_ReceiptBytesKey) &&

  79.                     ArrayEquals<byte>(receiptData, (byte[])_mostRecentReceiptData[k_ReceiptBytesKey]))

  80.                 {

  81.                     receipt = (PKCS7)_mostRecentReceiptData[k_PKCS7Key];

  82.                     return (AppleReceipt)_mostRecentReceiptData[k_AppleReceiptKey];

  83.                 }

  84. 

  85.                 using (var stm = new System.IO.MemoryStream(receiptData))

  86.                 {

  87.                     Asn1Parser parser = new Asn1Parser();

  88.                     parser.LoadData(stm);

  89.                     receipt = new PKCS7(parser.RootNode);

  90.                     var result = ParseReceipt(receipt.data);

  91. 

  92.                     // Cache the receipt info

  93.                     _mostRecentReceiptData[k_AppleReceiptKey] = result;

  94.                     _mostRecentReceiptData[k_PKCS7Key] = receipt;

  95.                     _mostRecentReceiptData[k_ReceiptBytesKey] = receiptData;

  96.                     return result;

  97.                 }

  98.             }

  99.             finally

  100.             {

  101.                 PopCultureOffThread(originalCulture);

  102.             }

  103.         }

  104. 

  105.         /// <summary>

  106.         /// Use InvariantCulture on this thread to avoid provoking Culture-sensitive reactions.

  107.         /// E.g. when using DateTime.Parse we might load the host's current Culture, and that may

  108.         /// have been stripped, and so this non-default culture would cause a crash.

  109.         /// (*) NOTE Culture stripping for IL2CPP will be reduced in future Unitys in 2021

  110.         /// (unity/il2cpp@5d3712f).

  111.         /// </summary>

  112.         /// <returns></returns>

  113.         private static CultureInfo PushInvariantCultureOnThread()

  114.         {

  115.             var originalCulture = Thread.CurrentThread.CurrentCulture;

  116. 

  117.             Thread.CurrentThread.CurrentCulture = CultureInfo.InvariantCulture;

  118. 

  119.             return originalCulture;

  120.         }

  121. 

  122.         /// <summary>

  123.         /// Restores the original culture to this thread.

  124.         /// </summary>

  125.         /// <param name="originalCulture"></param>

  126.         private static void PopCultureOffThread(CultureInfo originalCulture)

  127.         {

  128.             // Undo our parser Culture-preparations, safely

  129.             Thread.CurrentThread.CurrentCulture = originalCulture;

  130.         }

  131. 

  132.         private AppleReceipt ParseReceipt(Asn1Node data)

  133.         {

  134.             if (data == null || data.ChildNodeCount != 1)

  135.             {

  136.                 throw new InvalidPKCS7Data();

  137.             }

  138. 

  139.             Asn1Node set = GetSetNode(data);

  140. 

  141.             var result = new AppleReceipt();

  142.             var inApps = new List<AppleInAppPurchaseReceipt>();

  143. 

  144.             for (int t = 0; t < set.ChildNodeCount; t++)

  145.             {

  146.                 var node = set.GetChildNode(t);

  147.                 // Each node should contain three children.

  148. 

  149.                 if (node.ChildNodeCount == 3)

  150.                 {

  151.                     var type = Asn1Util.BytesToLong(node.GetChildNode(0).Data);

  152.                     var value = node.GetChildNode(2);

  153.                     // See https://developer.apple.com/library/ios/releasenotes/General/ValidateAppStoreReceipt/Chapters/ReceiptFields.html#//apple_ref/doc/uid/TP40010573-CH106-SW1

  154.                     switch (type)

  155.                     {

  156.                         case 2:

  157.                             result.bundleID = Encoding.UTF8.GetString(value.GetChildNode(0).Data);

  158.                             break;

  159.                         case 3:

  160.                             result.appVersion = Encoding.UTF8.GetString(value.GetChildNode(0).Data);

  161.                             break;

  162.                         case 4:

  163.                             result.opaque = value.Data;

  164.                             break;

  165.                         case 5:

  166.                             result.hash = value.Data;

  167.                             break;

  168.                         case 12:

  169.                             var dateString = Encoding.UTF8.GetString(value.GetChildNode(0).Data);

  170.                             result.receiptCreationDate = DateTime.Parse(dateString).ToUniversalTime();

  171.                             break;

  172.                         case 17:

  173.                             inApps.Add(ParseInAppReceipt(value.GetChildNode(0)));

  174.                             break;

  175.                         case 19:

  176.                             result.originalApplicationVersion = Encoding.UTF8.GetString(value.GetChildNode(0).Data);

  177.                             break;

  178.                     }

  179.                 }

  180.             }

  181. 

  182.             result.inAppPurchaseReceipts = inApps.ToArray();

  183.             return result;

  184.         }

  185. 

  186.         private Asn1Node GetSetNode(Asn1Node data)

  187.         {

  188.             if (data.IsIndefiniteLength && data.ChildNodeCount == 1)

  189.             {

  190.                 // Explanation: Receipts received from the iOS StoreKit Testing encodes the receipt data one layer deeper than expected.

  191.                 // It also has nodes with "Indeterminate" or "Undefined" length, including the node in question.

  192.                 // Failing to go one node deeper will result in an unparsed receipt.

  193.                 var intermediateNode = data.GetChildNode(0);

  194.                 return intermediateNode.GetChildNode(0);

  195.             }

  196.             else

  197.             {

  198.                 return data.GetChildNode(0);

  199.             }

  200.         }

  201. 

  202.         private AppleInAppPurchaseReceipt ParseInAppReceipt(Asn1Node inApp)

  203.         {

  204.             var result = new AppleInAppPurchaseReceipt();

  205.             for (int t = 0; t < inApp.ChildNodeCount; t++)

  206.             {

  207.                 var node = inApp.GetChildNode(t);

  208.                 if (node.ChildNodeCount == 3)

  209.                 {

  210.                     var type = Asn1Util.BytesToLong(node.GetChildNode(0).Data);

  211.                     var value = node.GetChildNode(2);

  212.                     switch (type)

  213.                     {

  214.                         case 1701:

  215.                             result.quantity = (int)Asn1Util.BytesToLong(value.GetChildNode(0).Data);

  216.                             break;

  217.                         case 1702:

  218.                             result.productID = Encoding.UTF8.GetString(value.GetChildNode(0).Data);

  219.                             break;

  220.                         case 1703:

  221.                             result.transactionID = Encoding.UTF8.GetString(value.GetChildNode(0).Data);

  222.                             break;

  223.                         case 1705:

  224.                             result.originalTransactionIdentifier = Encoding.UTF8.GetString(value.GetChildNode(0).Data);

  225.                             break;

  226.                         case 1704:

  227.                             result.purchaseDate = TryParseDateTimeNode(value);

  228.                             break;

  229.                         case 1706:

  230.                             result.originalPurchaseDate = TryParseDateTimeNode(value);

  231.                             break;

  232.                         case 1708:

  233.                             result.subscriptionExpirationDate = TryParseDateTimeNode(value);

  234.                             break;

  235.                         case 1712:

  236.                             result.cancellationDate = TryParseDateTimeNode(value);

  237.                             break;

  238. 

  239.                         case 1707:

  240.                             // looks like possibly a type?

  241.                             result.productType = (int)Asn1Util.BytesToLong(value.GetChildNode(0).Data);

  242.                             break;

  243. 

  244.                         case 1713:

  245.                             // looks like possibly is_trial?

  246.                             result.isFreeTrial = (int)Asn1Util.BytesToLong(value.GetChildNode(0).Data);

  247.                             break;

  248. 

  249.                         case 1719:

  250.                             result.isIntroductoryPricePeriod = (int)Asn1Util.BytesToLong(value.GetChildNode(0).Data);

  251.                             break;

  252. 

  253.                         default:

  254.                             break;

  255. 

  256. 

  257.                     }

  258. 

  259.                 }

  260.             }

  261.             return result;

  262.         }

  263. 

  264.         /// <summary>

  265.         /// Try and parse a DateTime, returning the minimum DateTime on failure.

  266.         /// </summary>

  267.         private static DateTime TryParseDateTimeNode(Asn1Node node)

  268.         {

  269.             var dateString = Encoding.UTF8.GetString(node.GetChildNode(0).Data);

  270.             if (!string.IsNullOrEmpty(dateString))

  271.             {

  272.                 return DateTime.Parse(dateString).ToUniversalTime();

  273.             }

  274. 

  275.             return DateTime.MinValue;

  276.         }

  277. 

  278.         /// <summary>

  279.         /// Indicates whether both arrays are the same or contains the same information.

  280.         ///

  281.         /// This method is used to validate if the receipts are different.

  282.         /// </summary>

  283.         /// <param name="a">First object to validate against second object.</param>

  284.         /// <param name="b">Second object to validate against first object.</param>

  285.         /// <typeparam name="T">Type of object to check.</typeparam>

  286.         /// <returns>Returns true if they are the same length and contain the same information or else returns false.</returns>

  287.         public static bool ArrayEquals<T>(T[] a, T[] b) where T : IEquatable<T>

  288.         {

  289.             if (a.Length != b.Length)

  290.             {

  291.                 return false;

  292.             }

  293.             for (int i = 0; i < a.Length; i++)

  294.             {

  295.                 if (!a[i].Equals(b[i]))

  296.                 {

  297.                     return false;

  298.                 }

  299.             }

  300.             return true;

  301.         }

  302.     }

  303. }