ei
/
mtg
mirror of https://github.com/9seconds/mtg
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 48 Wiki Activity
Highly-opinionated (ex-bullshit-free) MTPROTO proxy for Telegram. If you use v1.0 or upgrade broke you proxy, please read the chapter Version 2
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
386 Commits
4 Branches
Tree: 91726d461f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '91726d461f'
${ noResults }
mtg/tlstypes/server_hello.go

server_hello.go 2.1KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798 
  1. package tlstypes

  2. 

  3. import (

  4. 	"bytes"

  5. 	"crypto/hmac"

  6. 	"crypto/rand"

  7. 	"crypto/sha256"

  8. 	"io"

  9. 	mrand "math/rand"

  10. 

  11. 	"golang.org/x/crypto/curve25519"

  12. 

  13. 	"github.com/9seconds/mtg/config"

  14. )

  15. 

  16. type ServerHello struct {

  17. 	Handshake

  18. 

  19. 	clientHello *ClientHello

  20. }

  21. 

  22. func (s ServerHello) WelcomePacket() []byte {

  23. 	buf := &bytes.Buffer{}

  24. 

  25. 	s.Random = [32]byte{}

  26. 	rec := Record{

  27. 		Type:    RecordTypeHandshake,

  28. 		Version: Version12,

  29. 		Data:    &s,

  30. 	}

  31. 	rec.WriteBytes(buf)

  32. 

  33. 	recChangeCipher := Record{

  34. 		Type:    RecordTypeChangeCipherSpec,

  35. 		Version: Version12,

  36. 		Data:    RawBytes([]byte{0x01}),

  37. 	}

  38. 	recChangeCipher.WriteBytes(buf)

  39. 

  40. 	hostCert := make([]byte, 1024+mrand.Intn(3092))

  41. 	rand.Read(hostCert) // nolint: errcheck

  42. 

  43. 	recData := Record{

  44. 		Type:    RecordTypeApplicationData,

  45. 		Version: Version12,

  46. 		Data:    RawBytes(hostCert),

  47. 	}

  48. 	recData.WriteBytes(buf)

  49. 

  50. 	packet := buf.Bytes()

  51. 

  52. 	mac := hmac.New(sha256.New, config.C.Secret)

  53. 	mac.Write(s.clientHello.Random[:]) // nolint: errcheck

  54. 	mac.Write(packet)                  // nolint: errcheck

  55. 	copy(packet[11:], mac.Sum(nil))

  56. 

  57. 	return packet

  58. }

  59. 

  60. func NewServerHello(clientHello *ClientHello) *ServerHello {

  61. 	rv := &ServerHello{

  62. 		clientHello: clientHello,

  63. 	}

  64. 

  65. 	rv.Type = HandshakeTypeServer

  66. 	rv.Version = Version12

  67. 	rv.SessionID = make([]byte, len(clientHello.SessionID))

  68. 	copy(rv.SessionID, clientHello.SessionID)

  69. 

  70. 	tail := bytes.NewBuffer(CipherSuiteType_TLS_AES_128_GCM_SHA256_Bytes)

  71. 	tail.WriteByte(0x00) // no compression

  72. 	makeTLSExtensions(tail)

  73. 	rv.Tail = RawBytes(tail.Bytes())

  74. 

  75. 	return rv

  76. }

  77. 

  78. func makeTLSExtensions(buf io.Writer) {

  79. 	buf.Write([]byte{ // nolint: errcheck

  80. 		0x00, 0x2e, // 46 bytes of data

  81. 		0x00, 0x33, // Extension - Key Share

  82. 		0x00, 0x24, // 36 bytes

  83. 		0x00, 0x1d, // x25519 curve

  84. 		0x00, 0x20, // 32 bytes of key

  85. 	})

  86. 

  87. 	var scalar [32]byte

  88. 

  89. 	rand.Read(scalar[:]) // nolint: errcheck

  90. 	curve, _ := curve25519.X25519(scalar[:], curve25519.Basepoint)

  91. 	buf.Write(curve) // nolint: errcheck

  92. 

  93. 	buf.Write([]byte{ // nolint: errcheck

  94. 		0x00, 0x2b, // Extension - Supported Versions

  95. 		0x00, 0x02, // 2 bytes are following

  96. 		0x03, 0x04, // TLS 1.3

  97. 	})

  98. }