def fill_missing(self):
"""
We do not want TLSServerKeyExchange.build() to overload and recompute
things every time it is called. This method can be called specifically
to have things filled in a smart fashion.
XXX We should account for the point_format (before 'point' filling).
"""
s = self.tls_session
if self.curve_type is None:
self.curve_type = _tls_ec_curve_types["named_curve"]
if self.named_curve is None:
self.named_curve = 23
curve_group = self.named_curve
if curve_group not in _tls_named_curves:
# this fallback is arguable
curve_group = 23 # default to secp256r1
s.server_kx_privkey = _tls_named_groups_generate(curve_group)
if self.point is None:
self.point = _tls_named_groups_pubbytes(
s.server_kx_privkey
)
# else, we assume that the user wrote the server_kx_privkey by himself
if self.pointlen is None:
self.pointlen = len(self.point)
if not s.client_kx_ecdh_params:
s.client_kx_ecdh_params = curve_group
def create_privkey(self):
"""
This is called by post_build() for key creation.
"""
self.privkey = _tls_named_groups_generate(self.group)
self.key_exchange = _tls_named_groups_pubbytes(self.privkey)