| // Copyright 2009 The Go Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style |
| // license that can be found in the LICENSE file. |
| |
| package tls |
| |
| import ( |
| "bytes"; |
| ) |
| |
| type clientHelloMsg struct { |
| raw []byte; |
| major, minor uint8; |
| random []byte; |
| sessionId []byte; |
| cipherSuites []uint16; |
| compressionMethods []uint8; |
| } |
| |
| func (m *clientHelloMsg) marshal() []byte { |
| if m.raw != nil { |
| return m.raw |
| } |
| |
| length := 2 + 32 + 1 + len(m.sessionId) + 2 + len(m.cipherSuites)*2 + 1 + len(m.compressionMethods); |
| x := make([]byte, 4+length); |
| x[0] = typeClientHello; |
| x[1] = uint8(length >> 16); |
| x[2] = uint8(length >> 8); |
| x[3] = uint8(length); |
| x[4] = m.major; |
| x[5] = m.minor; |
| bytes.Copy(x[6:38], m.random); |
| x[38] = uint8(len(m.sessionId)); |
| bytes.Copy(x[39:39+len(m.sessionId)], m.sessionId); |
| y := x[39+len(m.sessionId) : len(x)]; |
| y[0] = uint8(len(m.cipherSuites) >> 7); |
| y[1] = uint8(len(m.cipherSuites) << 1); |
| for i, suite := range m.cipherSuites { |
| y[2+i*2] = uint8(suite >> 8); |
| y[3+i*2] = uint8(suite); |
| } |
| z := y[2+len(m.cipherSuites)*2 : len(y)]; |
| z[0] = uint8(len(m.compressionMethods)); |
| bytes.Copy(z[1:len(z)], m.compressionMethods); |
| m.raw = x; |
| |
| return x; |
| } |
| |
| func (m *clientHelloMsg) unmarshal(data []byte) bool { |
| if len(data) < 39 { |
| return false |
| } |
| m.raw = data; |
| m.major = data[4]; |
| m.minor = data[5]; |
| m.random = data[6:38]; |
| sessionIdLen := int(data[38]); |
| if sessionIdLen > 32 || len(data) < 39+sessionIdLen { |
| return false |
| } |
| m.sessionId = data[39 : 39+sessionIdLen]; |
| data = data[39+sessionIdLen : len(data)]; |
| if len(data) < 2 { |
| return false |
| } |
| // cipherSuiteLen is the number of bytes of cipher suite numbers. Since |
| // they are uint16s, the number must be even. |
| cipherSuiteLen := int(data[0])<<8 | int(data[1]); |
| if cipherSuiteLen%2 == 1 || len(data) < 2+cipherSuiteLen { |
| return false |
| } |
| numCipherSuites := cipherSuiteLen / 2; |
| m.cipherSuites = make([]uint16, numCipherSuites); |
| for i := 0; i < numCipherSuites; i++ { |
| m.cipherSuites[i] = uint16(data[2+2*i])<<8 | uint16(data[3+2*i]) |
| } |
| data = data[2+cipherSuiteLen : len(data)]; |
| if len(data) < 2 { |
| return false |
| } |
| compressionMethodsLen := int(data[0]); |
| if len(data) < 1+compressionMethodsLen { |
| return false |
| } |
| m.compressionMethods = data[1 : 1+compressionMethodsLen]; |
| |
| // A ClientHello may be following by trailing data: RFC 4346 section 7.4.1.2 |
| return true; |
| } |
| |
| type serverHelloMsg struct { |
| raw []byte; |
| major, minor uint8; |
| random []byte; |
| sessionId []byte; |
| cipherSuite uint16; |
| compressionMethod uint8; |
| } |
| |
| func (m *serverHelloMsg) marshal() []byte { |
| if m.raw != nil { |
| return m.raw |
| } |
| |
| length := 38 + len(m.sessionId); |
| x := make([]byte, 4+length); |
| x[0] = typeServerHello; |
| x[1] = uint8(length >> 16); |
| x[2] = uint8(length >> 8); |
| x[3] = uint8(length); |
| x[4] = m.major; |
| x[5] = m.minor; |
| bytes.Copy(x[6:38], m.random); |
| x[38] = uint8(len(m.sessionId)); |
| bytes.Copy(x[39:39+len(m.sessionId)], m.sessionId); |
| z := x[39+len(m.sessionId) : len(x)]; |
| z[0] = uint8(m.cipherSuite >> 8); |
| z[1] = uint8(m.cipherSuite); |
| z[2] = uint8(m.compressionMethod); |
| m.raw = x; |
| |
| return x; |
| } |
| |
| type certificateMsg struct { |
| raw []byte; |
| certificates [][]byte; |
| } |
| |
| func (m *certificateMsg) marshal() (x []byte) { |
| if m.raw != nil { |
| return m.raw |
| } |
| |
| var i int; |
| for _, slice := range m.certificates { |
| i += len(slice) |
| } |
| |
| length := 3 + 3*len(m.certificates) + i; |
| x = make([]byte, 4+length); |
| x[0] = typeCertificate; |
| x[1] = uint8(length >> 16); |
| x[2] = uint8(length >> 8); |
| x[3] = uint8(length); |
| |
| certificateOctets := length - 3; |
| x[4] = uint8(certificateOctets >> 16); |
| x[5] = uint8(certificateOctets >> 8); |
| x[6] = uint8(certificateOctets); |
| |
| y := x[7:len(x)]; |
| for _, slice := range m.certificates { |
| y[0] = uint8(len(slice) >> 16); |
| y[1] = uint8(len(slice) >> 8); |
| y[2] = uint8(len(slice)); |
| bytes.Copy(y[3:len(y)], slice); |
| y = y[3+len(slice) : len(y)]; |
| } |
| |
| m.raw = x; |
| return; |
| } |
| |
| type serverHelloDoneMsg struct{} |
| |
| func (m *serverHelloDoneMsg) marshal() []byte { |
| x := make([]byte, 4); |
| x[0] = typeServerHelloDone; |
| return x; |
| } |
| |
| type clientKeyExchangeMsg struct { |
| raw []byte; |
| ciphertext []byte; |
| } |
| |
| func (m *clientKeyExchangeMsg) marshal() []byte { |
| if m.raw != nil { |
| return m.raw |
| } |
| length := len(m.ciphertext) + 2; |
| x := make([]byte, length+4); |
| x[0] = typeClientKeyExchange; |
| x[1] = uint8(length >> 16); |
| x[2] = uint8(length >> 8); |
| x[3] = uint8(length); |
| x[4] = uint8(len(m.ciphertext) >> 8); |
| x[5] = uint8(len(m.ciphertext)); |
| bytes.Copy(x[6:len(x)], m.ciphertext); |
| |
| m.raw = x; |
| return x; |
| } |
| |
| func (m *clientKeyExchangeMsg) unmarshal(data []byte) bool { |
| m.raw = data; |
| if len(data) < 7 { |
| return false |
| } |
| cipherTextLen := int(data[4])<<8 | int(data[5]); |
| if len(data) != 6+cipherTextLen { |
| return false |
| } |
| m.ciphertext = data[6:len(data)]; |
| return true; |
| } |
| |
| type finishedMsg struct { |
| raw []byte; |
| verifyData []byte; |
| } |
| |
| func (m *finishedMsg) marshal() (x []byte) { |
| if m.raw != nil { |
| return m.raw |
| } |
| |
| x = make([]byte, 16); |
| x[0] = typeFinished; |
| x[3] = 12; |
| bytes.Copy(x[4:len(x)], m.verifyData); |
| m.raw = x; |
| return; |
| } |
| |
| func (m *finishedMsg) unmarshal(data []byte) bool { |
| m.raw = data; |
| if len(data) != 4+12 { |
| return false |
| } |
| m.verifyData = data[4:len(data)]; |
| return true; |
| } |
