1 # Copyright 2016-2024 The OpenSSL Project Authors. All Rights Reserved.
3 # Licensed under the Apache License 2.0 (the "License"). You may not use
4 # this file except in compliance with the License. You can obtain a copy
5 # in the file LICENSE in the source distribution or at
6 # https://www.openssl.org/source/license.html
10 package TLSProxy::ClientHello;
15 push @ISA, 'TLSProxy::Message';
28 $message_frag_lens) = @_;
30 my $self = $class->SUPER::new(
33 TLSProxy::Message::MT_CLIENT_HELLO,
42 $self->{isdtls} = $isdtls;
43 $self->{client_version} = 0;
45 $self->{session_id_len} = 0;
46 $self->{session} = "";
47 $self->{legacy_cookie_len} = 0; #DTLS only
48 $self->{legacy_cookie} = ""; #DTLS only
49 $self->{ciphersuite_len} = 0;
50 $self->{ciphersuites} = [];
51 $self->{comp_meth_len} = 0;
52 $self->{comp_meths} = [];
53 $self->{extensions_len} = 0;
54 $self->{extension_data} = "";
63 my ($client_version) = unpack('n', $self->data);
64 my $random = substr($self->data, $ptr, 32);
66 my $session_id_len = unpack('C', substr($self->data, $ptr));
68 my $session = substr($self->data, $ptr, $session_id_len);
69 $ptr += $session_id_len;
70 my $legacy_cookie_len = 0;
71 my $legacy_cookie = "";
73 $legacy_cookie_len = unpack('C', substr($self->data, $ptr));
75 $legacy_cookie = substr($self->data, $ptr, $legacy_cookie_len);
76 $ptr += $legacy_cookie_len;
78 my $ciphersuite_len = unpack('n', substr($self->data, $ptr));
80 my @ciphersuites = unpack('n*', substr($self->data, $ptr,
82 $ptr += $ciphersuite_len;
83 my $comp_meth_len = unpack('C', substr($self->data, $ptr));
85 my @comp_meths = unpack('C*', substr($self->data, $ptr, $comp_meth_len));
86 $ptr += $comp_meth_len;
87 my $extensions_len = unpack('n', substr($self->data, $ptr));
89 #For now we just deal with this as a block of data. In the future we will
91 my $extension_data = substr($self->data, $ptr);
93 if (length($extension_data) != $extensions_len) {
94 die "Invalid extension length\n";
97 while (length($extension_data) >= 4) {
98 my ($type, $size) = unpack("nn", $extension_data);
99 my $extdata = substr($extension_data, 4, $size);
100 $extension_data = substr($extension_data, 4 + $size);
101 $extensions{$type} = $extdata;
104 $self->client_version($client_version);
105 $self->random($random);
106 $self->session_id_len($session_id_len);
107 $self->session($session);
108 $self->legacy_cookie_len($legacy_cookie_len);
109 $self->legacy_cookie($legacy_cookie);
110 $self->ciphersuite_len($ciphersuite_len);
111 $self->ciphersuites(\@ciphersuites);
112 $self->comp_meth_len($comp_meth_len);
113 $self->comp_meths(\@comp_meths);
114 $self->extensions_len($extensions_len);
115 $self->extension_data(\%extensions);
117 $self->process_extensions();
119 print " Client Version:".$TLSProxy::Record::tls_version{$client_version}."\n";
120 print " Session ID Len:".$session_id_len."\n";
121 if($self->{isdtls}) {
122 print " Legacy Cookie Len:".$legacy_cookie_len."\n";
124 print " Ciphersuite len:".$ciphersuite_len."\n";
125 print " Compression Method Len:".$comp_meth_len."\n";
126 print " Extensions Len:".$extensions_len."\n";
129 #Perform any actions necessary based on the extensions we've seen
130 sub process_extensions
133 my %extensions = %{$self->extension_data};
135 #Clear any state from a previous run
136 TLSProxy::Record->etm(0);
138 if (exists $extensions{TLSProxy::Message::EXT_ENCRYPT_THEN_MAC}) {
139 TLSProxy::Record->etm(1);
143 sub extension_contents
149 my $extdata = ${$self->extension_data}{$key};
150 $extension .= pack("n", $key);
151 $extension .= pack("n", length($extdata));
152 $extension .= $extdata;
156 #Reconstruct the on-the-wire message data following changes
157 sub set_message_contents
163 $data = pack('n', $self->client_version);
164 $data .= $self->random;
165 $data .= pack('C', $self->session_id_len);
166 $data .= $self->session;
168 $data .= pack('C', $self->legacy_cookie_len);
169 if($self->legacy_cookie_len > 0) {
170 $data .= $self->legacy_cookie;
173 $data .= pack('n', $self->ciphersuite_len);
174 $data .= pack("n*", @{$self->ciphersuites});
175 $data .= pack('C', $self->comp_meth_len);
176 $data .= pack("C*", @{$self->comp_meths});
178 foreach my $key (keys %{$self->extension_data}) {
179 next if ($key == TLSProxy::Message::EXT_PSK);
180 $extensions .= $self->extension_contents($key);
181 #Add extension twice if we are duplicating that extension
182 $extensions .= $self->extension_contents($key) if ($key == $self->dupext);
184 #PSK extension always goes last...
185 if (defined ${$self->extension_data}{TLSProxy::Message::EXT_PSK}) {
186 $extensions .= $self->extension_contents(TLSProxy::Message::EXT_PSK);
188 #unless we have EXT_FORCE_LAST
189 if (defined ${$self->extension_data}{TLSProxy::Message::EXT_FORCE_LAST}) {
190 $extensions .= $self->extension_contents(TLSProxy::Message::EXT_FORCE_LAST);
193 $data .= pack('n', length($extensions));
194 $data .= $extensions;
199 #Read/write accessors
204 $self->{client_version} = shift;
206 return $self->{client_version};
212 $self->{random} = shift;
214 return $self->{random};
220 $self->{session_id_len} = shift;
222 return $self->{session_id_len};
228 $self->{session} = shift;
230 return $self->{session};
232 sub legacy_cookie_len
236 $self->{legacy_cookie_len} = shift;
238 return $self->{legacy_cookie_len};
244 $self->{legacy_cookie} = shift;
246 return $self->{legacy_cookie};
252 $self->{ciphersuite_len} = shift;
254 return $self->{ciphersuite_len};
260 $self->{ciphersuites} = shift;
262 return $self->{ciphersuites};
268 $self->{comp_meth_len} = shift;
270 return $self->{comp_meth_len};
276 $self->{comp_meths} = shift;
278 return $self->{comp_meths};
284 $self->{extensions_len} = shift;
286 return $self->{extensions_len};
292 $self->{extension_data} = shift;
294 return $self->{extension_data};
298 my ($self, $ext_type, $ext_data) = @_;
299 $self->{extension_data}{$ext_type} = $ext_data;
303 my ($self, $ext_type) = @_;
304 delete $self->{extension_data}{$ext_type};