ei
/
mtg
의 미러 https://github.com/9seconds/mtg
보기 1
좋아요 0
포크 0
코드 이슈 0 릴리즈 48 위키 Activity
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
332 커밋
4 브랜치
트리: 68e1d66017
브랜치 태그
${ item.name }
Create branch ${ searchTerm }
from '68e1d66017'
${ noResults }
mtg/tlstypes/server_hello.go

server_hello.go 2.0KB
히스토리 Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. package tlstypes

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/hmac"

  6. 	"crypto/rand"

  7. 	"crypto/sha256"

  8. 	"io"

  9. 	mrand "math/rand"

  10. 

  11. 	"golang.org/x/crypto/curve25519"

  12. 

  13. 	"mtg/config"

  14. )

  15. 

  16. type ServerHello struct {

  17. 	Handshake

  18. 

  19. 	clientHello *ClientHello

  20. }

  21. 

  22. func (s ServerHello) WelcomePacket() []byte {

  23. 	s.Random = [32]byte{}

  24. 	rec := Record{

  25. 		Type:    RecordTypeHandshake,

  26. 		Version: Version12,

  27. 		Data:    &s,

  28. 	}

  29. 	buf := bytes.NewBuffer(rec.Bytes())

  30. 

  31. 	recChangeCipher := Record{

  32. 		Type:    RecordTypeChangeCipherSpec,

  33. 		Version: Version12,

  34. 		Data:    RawBytes([]byte{0x01}),

  35. 	}

  36. 	buf.Write(recChangeCipher.Bytes())

  37. 

  38. 	hostCert := make([]byte, 1024+mrand.Intn(3092))

  39. 	rand.Read(hostCert) // nolint: errcheck

  40. 

  41. 	recData := Record{

  42. 		Type:    RecordTypeApplicationData,

  43. 		Version: Version12,

  44. 		Data:    RawBytes(hostCert),

  45. 	}

  46. 	buf.Write(recData.Bytes())

  47. 	packet := buf.Bytes()

  48. 

  49. 	mac := hmac.New(sha256.New, config.C.Secret)

  50. 	mac.Write(s.clientHello.Random[:]) // nolint: errcheck

  51. 	mac.Write(packet)                  // nolint: errcheck

  52. 	copy(packet[11:], mac.Sum(nil))

  53. 

  54. 	return packet

  55. }

  56. 

  57. func NewServerHello(clientHello *ClientHello) *ServerHello {

  58. 	rv := &ServerHello{

  59. 		clientHello: clientHello,

  60. 	}

  61. 

  62. 	rv.Type = HandshakeTypeServer

  63. 	rv.Version = Version12

  64. 	rv.SessionID = make([]byte, len(clientHello.SessionID))

  65. 	copy(rv.SessionID, clientHello.SessionID)

  66. 

  67. 	tail := bytes.NewBuffer(CipherSuiteType_TLS_AES_128_GCM_SHA256_Bytes)

  68. 	tail.WriteByte(0x00) // no compression

  69. 	makeTLSExtensions(tail)

  70. 	rv.Tail = RawBytes(tail.Bytes())

  71. 

  72. 	return rv

  73. }

  74. 

  75. func makeTLSExtensions(buf io.Writer) {

  76. 	buf.Write([]byte{ // nolint: errcheck

  77. 		0x00, 0x2e, // 46 bytes of data

  78. 		0x00, 0x33, // Extension - Key Share

  79. 		0x00, 0x24, // 36 bytes

  80. 		0x00, 0x1d, // x25519 curve

  81. 		0x00, 0x20, // 32 bytes of key

  82. 	})

  83. 

  84. 	var scalar [32]byte

  85. 

  86. 	rand.Read(scalar[:]) // nolint: errcheck

  87. 	curve, _ := curve25519.X25519(scalar[:], curve25519.Basepoint)

  88. 	buf.Write(curve) // nolint: errcheck

  89. 

  90. 	buf.Write([]byte{ // nolint: errcheck

  91. 		0x00, 0x2b, // Extension - Supported Versions

  92. 		0x00, 0x02, // 2 bytes are following

  93. 		0x03, 0x04, // TLS 1.3

  94. 	})

  95. }