def fill_missing(self):
s = self.tls_session
s.client_kx_privkey = _tls_named_groups_generate(
s.client_kx_ecdh_params
)
# ecdh_Yc follows ECPoint.point format as defined in
# https://tools.ietf.org/html/rfc8422#section-5.4
pubkey = s.client_kx_privkey.public_key()
if isinstance(pubkey, (x25519.X25519PublicKey,
x448.X448PublicKey)):
self.ecdh_Yc = pubkey.public_bytes(
serialization.Encoding.Raw,
serialization.PublicFormat.Raw
)
if s.client_kx_privkey and s.server_kx_pubkey:
pms = s.client_kx_privkey.exchange(s.server_kx_pubkey)
else:
# uncompressed format of an elliptic curve point
x = pubkey.public_numbers().x
y = pubkey.public_numbers().y
self.ecdh_Yc = (b"\x04" +
pkcs_i2osp(x, pubkey.key_size // 8) +
pkcs_i2osp(y, pubkey.key_size // 8))
if s.client_kx_privkey and s.server_kx_pubkey:
pms = s.client_kx_privkey.exchange(ec.ECDH(),
s.server_kx_pubkey)
if s.client_kx_privkey and s.server_kx_pubkey:
s.pre_master_secret = pms
if not s.extms or s.session_hash:
s.compute_ms_and_derive_keys()
def fill_missing(self):
"""
We do not want TLSServerKeyExchange.build() to overload and recompute
things every time it is called. This method can be called specifically
to have things filled in a smart fashion.
XXX We should account for the point_format (before 'point' filling).
"""
s = self.tls_session
if self.curve_type is None:
self.curve_type = _tls_ec_curve_types["named_curve"]
if self.named_curve is None:
self.named_curve = 23
curve_group = self.named_curve
if curve_group not in _tls_named_curves:
# this fallback is arguable
curve_group = 23 # default to secp256r1
s.server_kx_privkey = _tls_named_groups_generate(curve_group)
if self.point is None:
self.point = _tls_named_groups_pubbytes(
s.server_kx_privkey
)
# else, we assume that the user wrote the server_kx_privkey by himself
if self.pointlen is None:
self.pointlen = len(self.point)
if not s.client_kx_ecdh_params:
s.client_kx_ecdh_params = curve_group
def fill_missing(self):
s = self.tls_session
s.client_kx_privkey = _tls_named_groups_generate(
s.client_kx_ecdh_params)
pubkey = s.client_kx_privkey.public_key()
x = pubkey.public_numbers().x
y = pubkey.public_numbers().y
self.ecdh_Yc = (b"\x04" + pkcs_i2osp(x, pubkey.key_size // 8) +
pkcs_i2osp(y, pubkey.key_size // 8))
if s.client_kx_privkey and s.server_kx_pubkey:
pms = s.client_kx_privkey.exchange(ec.ECDH(), s.server_kx_pubkey)
s.pre_master_secret = pms
s.compute_ms_and_derive_keys()
def create_privkey(self):
"""
This is called by post_build() for key creation.
"""
self.privkey = _tls_named_groups_generate(self.group)
self.key_exchange = _tls_named_groups_pubbytes(self.privkey)