InterfaceTLS/ClientHello.py at master · kojo1/InterfaceTLS · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
import os
import struct

from SslKeyLog import SslKeyLog #keyLog for Wireshark
from wolfcrypt.ciphers import EccPrivate

from KeySchedule import KeySchedule

class ClientHello:
    def __init__(self, keylog, key_exchange):
        self.legacy_version = 0x0303  # ProtocolVersion
        self.random = os.urandom(32)  # 32 bytes of random data
        self.legacy_session_id_length = b'\x00\x00'  # Length 0
        self.cipher_suites = [0x1301]  # TLS_AES_128_GCM_SHA256 (example cipher suite)
        self.legacy_compression_methods = [0x00]  # NULL compression method
        self.private_key = None  # To store the ECDH private key
        self.supported_groups = [0x0017] # secp256r1
        self.signature_algorithms = [0x0804] # rsa_pss_rsae_sha256
        self.key_exchange = key_exchange

        self.keylog = keylog #for Wireshark

    def make(self):
        # Build the non-extension part of ClientHello
        client_hello_base = struct.pack(
            '!H32s2sB',
            self.legacy_version,
            self.random,
            self.legacy_session_id_length,
            len(self.cipher_suites) * 2
        ) + b''.join(struct.pack('!H', suite) for suite in self.cipher_suites) + struct.pack(
            '!B',
            len(self.legacy_compression_methods)
        ) + b''.join(struct.pack('!B', method) for method in self.legacy_compression_methods)

        # Add extensions
        extensions = self._build_extensions()
        cl_hello_payload = client_hello_base + struct.pack('!H', len(extensions)) + extensions

        self.keylog.setClientRnd(self.random)

        return cl_hello_payload

    def _build_extensions(self):
        # Use TLSextention.make to build each extension
        extensions = []

        # supported_groups
        extensions.append(self._make_extension(10, self.key_exchange.make_supported_groups()))

        # key_share
        extensions.append(self._make_extension(51, self.key_exchange.make_key_share()))

        # supported_versions
        supported_versions = struct.pack('!B', len(b'\x03\x04')) + b'\x03\x04'  # Length 1 byte + TLS 1.3
        extensions.append(self._make_extension(43, supported_versions))

        # signature_algorithms
        signature_algorithms = struct.pack('!H', len(self.signature_algorithms) * 2) + b''.join(struct.pack('!H', sa) for sa in self.signature_algorithms)
        extensions.append(self._make_extension(13, signature_algorithms))

        # encrypt_then_mac
        extensions.append(self._make_extension(22, b''))

        # Combine all extensions
        return b''.join(extensions)

    def _make_extension(self, extension_type, extension_data):
        extension_length = len(extension_data)
        return struct.pack('!HH', extension_type, extension_length) + extension_data