Cloak/internal/client/TLS.go

package client

import (
	"encoding/binary"
	"github.com/cbeuw/Cloak/internal/util"
	"net"

	log "github.com/sirupsen/logrus"
)

type Browser interface {
	composeClientHello(*State) ([]byte, []byte)
}

func makeServerName(serverName string) []byte {
	serverNameListLength := make([]byte, 2)
	binary.BigEndian.PutUint16(serverNameListLength, uint16(len(serverName)+3))
	serverNameType := []byte{0x00} // host_name
	serverNameLength := make([]byte, 2)
	binary.BigEndian.PutUint16(serverNameLength, uint16(len(serverName)))
	ret := make([]byte, 2+1+2+len(serverName))
	copy(ret[0:2], serverNameListLength)
	copy(ret[2:3], serverNameType)
	copy(ret[3:5], serverNameLength)
	copy(ret[5:], serverName)
	return ret
}

// addExtensionRecord, add type, length to extension data
func addExtRec(typ []byte, data []byte) []byte {
	length := make([]byte, 2)
	binary.BigEndian.PutUint16(length, uint16(len(data)))
	ret := make([]byte, 2+2+len(data))
	copy(ret[0:2], typ)
	copy(ret[2:4], length)
	copy(ret[4:], data)
	return ret
}

// composeClientHello composes ClientHello with record layer
func composeClientHello(sta *State) ([]byte, []byte) {
	ch, sharedSecret := sta.Browser.composeClientHello(sta)
	return util.AddRecordLayer(ch, []byte{0x16}, []byte{0x03, 0x01}), sharedSecret
}

func PrepareConnection(sta *State, conn net.Conn) (sessionKey []byte, err error) {
	clientHello, sharedSecret := composeClientHello(sta)
	_, err = conn.Write(clientHello)
	if err != nil {
		return
	}
	log.Trace("client hello sent successfully")

	buf := make([]byte, 1024)
	log.Trace("waiting for ServerHello")
	_, err = util.ReadTLS(conn, buf)
	if err != nil {
		return
	}

	encrypted := append(buf[11:43], buf[89:121]...)
	nonce := encrypted[0:12]
	ciphertext := encrypted[12:60]
	sessionKey, err = util.AESGCMDecrypt(nonce, sharedSecret, ciphertext)
	if err != nil {
		return
	}

	for i := 0; i < 2; i++ {
		// ChangeCipherSpec and EncryptedCert (in the format of application data)
		_, err = util.ReadTLS(conn, buf)
		if err != nil {
			return
		}
	}

	return sessionKey, nil

}
Refactor client TLS 2019-08-02 15:02:25 +00:00			`package client`
Untested client 2018-10-07 17:09:45 +00:00
			`import (`
			`"encoding/binary"`
			`"github.com/cbeuw/Cloak/internal/util"`
Refactor TLS handshake 2019-08-06 14:50:33 +00:00			`"net"`

			`log "github.com/sirupsen/logrus"`
Untested client 2018-10-07 17:09:45 +00:00			`)`

Refactor client TLS 2019-08-02 15:02:25 +00:00			`type Browser interface {`
			`composeClientHello(*State) ([]byte, []byte)`
Untested client 2018-10-07 17:09:45 +00:00			`}`

TLS1.3 2019-08-02 00:01:19 +00:00			`func makeServerName(serverName string) []byte {`
Untested client 2018-10-07 17:09:45 +00:00			`serverNameListLength := make([]byte, 2)`
			`binary.BigEndian.PutUint16(serverNameListLength, uint16(len(serverName)+3))`
			`serverNameType := []byte{0x00} // host_name`
			`serverNameLength := make([]byte, 2)`
			`binary.BigEndian.PutUint16(serverNameLength, uint16(len(serverName)))`
			`ret := make([]byte, 2+1+2+len(serverName))`
			`copy(ret[0:2], serverNameListLength)`
			`copy(ret[2:3], serverNameType)`
			`copy(ret[3:5], serverNameLength)`
			`copy(ret[5:], serverName)`
			`return ret`
			`}`

			`// addExtensionRecord, add type, length to extension data`
			`func addExtRec(typ []byte, data []byte) []byte {`
			`length := make([]byte, 2)`
			`binary.BigEndian.PutUint16(length, uint16(len(data)))`
			`ret := make([]byte, 2+2+len(data))`
			`copy(ret[0:2], typ)`
			`copy(ret[2:4], length)`
			`copy(ret[4:], data)`
			`return ret`
			`}`

Refactor TLS handshake 2019-08-06 14:50:33 +00:00			`// composeClientHello composes ClientHello with record layer`
			`func composeClientHello(sta *State) ([]byte, []byte) {`
Refactor client TLS 2019-08-02 15:02:25 +00:00			`ch, sharedSecret := sta.Browser.composeClientHello(sta)`
TLS1.3 2019-08-02 00:01:19 +00:00			`return util.AddRecordLayer(ch, []byte{0x16}, []byte{0x03, 0x01}), sharedSecret`
Untested client 2018-10-07 17:09:45 +00:00			`}`
Refactor TLS handshake 2019-08-06 14:50:33 +00:00
			`func PrepareConnection(sta *State, conn net.Conn) (sessionKey []byte, err error) {`
			`clientHello, sharedSecret := composeClientHello(sta)`
			`_, err = conn.Write(clientHello)`
			`if err != nil {`
			`return`
			`}`
			`log.Trace("client hello sent successfully")`

			`buf := make([]byte, 1024)`
			`log.Trace("waiting for ServerHello")`
			`_, err = util.ReadTLS(conn, buf)`
			`if err != nil {`
			`return`
			`}`
Use AEAD to encrypt session key in ServerHello to provide authentication of the identity of the server 2019-08-06 22:59:29 +00:00
			`encrypted := append(buf[11:43], buf[89:121]...)`
			`nonce := encrypted[0:12]`
			`ciphertext := encrypted[12:60]`
			`sessionKey, err = util.AESGCMDecrypt(nonce, sharedSecret, ciphertext)`
			`if err != nil {`
			`return`
			`}`

Let the server send a mock encrypted certificate after ChangeCipherSuite to imitate real behaviour more closely 2019-08-06 23:28:08 +00:00			`for i := 0; i < 2; i++ {`
			`// ChangeCipherSpec and EncryptedCert (in the format of application data)`
			`_, err = util.ReadTLS(conn, buf)`
			`if err != nil {`
			`return`
			`}`
Refactor TLS handshake 2019-08-06 14:50:33 +00:00			`}`

			`return sessionKey, nil`

			`}`