ei
/
mtg
miroir de https://github.com/9seconds/mtg
Suivre 1
Ajouter aux favoris 0
Bifurcation 0
Code Tickets 0 Versions 48 Wiki Activité
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
322 Révisions
4 Branches
Aborescence: 8e0436e89a
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '8e0436e89a'
${ noResults }
mtg/tlstypes/server_hello.go

server_hello.go 1.9KB
Historique Brut

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. package tlstypes

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/hmac"

  6. 	"crypto/rand"

  7. 	"crypto/sha256"

  8. 	"io"

  9. 

  10. 	"golang.org/x/crypto/curve25519"

  11. 

  12. 	"mtg/config"

  13. )

  14. 

  15. type ServerHello struct {

  16. 	Handshake

  17. 

  18. 	clientHello *ClientHello

  19. }

  20. 

  21. func (s ServerHello) WelcomePacket(hostCert []byte) []byte {

  22. 	s.Random = [32]byte{}

  23. 	rec := Record{

  24. 		Type:    RecordTypeHandshake,

  25. 		Version: Version12,

  26. 		Data:    &s,

  27. 	}

  28. 	buf := bytes.NewBuffer(rec.Bytes())

  29. 

  30. 	recChangeCipher := Record{

  31. 		Type:    RecordTypeChangeCipherSpec,

  32. 		Version: Version12,

  33. 		Data:    RawBytes([]byte{0x01}),

  34. 	}

  35. 	buf.Write(recChangeCipher.Bytes())

  36. 

  37. 	recData := Record{

  38. 		Type:    RecordTypeApplicationData,

  39. 		Version: Version12,

  40. 		Data:    RawBytes(hostCert),

  41. 	}

  42. 	buf.Write(recData.Bytes())

  43. 	packet := buf.Bytes()

  44. 

  45. 	mac := hmac.New(sha256.New, config.C.Secret)

  46. 	mac.Write(s.clientHello.Random[:]) // nolint: errcheck

  47. 	mac.Write(packet)                  // nolint: errcheck

  48. 	copy(packet[11:], mac.Sum(nil))

  49. 

  50. 	return packet

  51. }

  52. 

  53. func NewServerHello(clientHello *ClientHello) *ServerHello {

  54. 	rv := &ServerHello{

  55. 		clientHello: clientHello,

  56. 	}

  57. 

  58. 	rv.Type = HandshakeTypeServer

  59. 	rv.Version = Version12

  60. 	rv.SessionID = make([]byte, len(clientHello.SessionID))

  61. 	copy(rv.SessionID, clientHello.SessionID)

  62. 

  63. 	tail := bytes.NewBuffer(CipherSuiteType_TLS_AES_128_GCM_SHA256_Bytes)

  64. 	tail.WriteByte(0x00) // no compression

  65. 	makeTLSExtensions(tail)

  66. 	rv.Tail = RawBytes(tail.Bytes())

  67. 

  68. 	return rv

  69. }

  70. 

  71. func makeTLSExtensions(buf io.Writer) {

  72. 	buf.Write([]byte{ // nolint: errcheck

  73. 		0x00, 0x2e, // 46 bytes of data

  74. 		0x00, 0x33, // Extension - Key Share

  75. 		0x00, 0x24, // 36 bytes

  76. 		0x00, 0x1d, // x25519 curve

  77. 		0x00, 0x20, // 32 bytes of key

  78. 	})

  79. 

  80. 	var scalar [32]byte

  81. 

  82. 	rand.Read(scalar[:]) // nolint: errcheck

  83. 	curve, _ := curve25519.X25519(scalar[:], curve25519.Basepoint)

  84. 	buf.Write(curve) // nolint: errcheck

  85. 

  86. 	buf.Write([]byte{ // nolint: errcheck

  87. 		0x00, 0x2b, // Extension - Supported Versions

  88. 		0x00, 0x02, // 2 bytes are following

  89. 		0x03, 0x04, // TLS 1.3

  90. 	})

  91. }