Cloak/internal/server/TLS.go

package server

import (
	"crypto"
	"errors"
	"fmt"
	"github.com/cbeuw/Cloak/internal/ecdh"
	"github.com/cbeuw/Cloak/internal/util"
	"net"

	log "github.com/sirupsen/logrus"
)

type TLS struct{}

var ErrBadClientHello = errors.New("non (or malformed) ClientHello")

func (TLS) String() string                                    { return "TLS" }
func (TLS) HasRecordLayer() bool                              { return true }
func (TLS) UnitReadFunc() func(net.Conn, []byte) (int, error) { return util.ReadTLS }

func (TLS) handshake(clientHello []byte, privateKey crypto.PrivateKey, originalConn net.Conn) (ai authenticationInfo, finisher func([]byte) (net.Conn, error), err error) {
	var ch *ClientHello
	ch, err = parseClientHello(clientHello)
	if err != nil {
		log.Debug(err)
		err = ErrBadClientHello
		return
	}

	ai, err = unmarshalClientHello(ch, privateKey)
	if err != nil {
		err = fmt.Errorf("failed to unmarshal ClientHello into authenticationInfo: %v", err)
		return
	}

	finisher = func(sessionKey []byte) (preparedConn net.Conn, err error) {
		preparedConn = originalConn
		reply, err := composeReply(ch, ai.sharedSecret, sessionKey)
		if err != nil {
			err = fmt.Errorf("failed to compose TLS reply: %v", err)
			return
		}
		_, err = preparedConn.Write(reply)
		if err != nil {
			err = fmt.Errorf("failed to write TLS reply: %v", err)
			go preparedConn.Close()
			return
		}
		return
	}

	return
}

func unmarshalClientHello(ch *ClientHello, staticPv crypto.PrivateKey) (ai authenticationInfo, err error) {
	ephPub, ok := ecdh.Unmarshal(ch.random)
	if !ok {
		err = ErrInvalidPubKey
		return
	}

	ai.nonce = ch.random[:12]

	ai.sharedSecret = ecdh.GenerateSharedSecret(staticPv, ephPub)
	var keyShare []byte
	keyShare, err = parseKeyShare(ch.extensions[[2]byte{0x00, 0x33}])
	if err != nil {
		return
	}

	ai.ciphertextWithTag = append(ch.sessionId, keyShare...)
	if len(ai.ciphertextWithTag) != 64 {
		err = fmt.Errorf("%v: %v", ErrCiphertextLength, len(ai.ciphertextWithTag))
		return
	}
	return
}
Untested server 2018-10-09 15:07:54 +00:00			`package server`

			`import (`
Refactor touchStone 2019-08-31 20:40:50 +00:00			`"crypto"`
Untested server 2018-10-09 15:07:54 +00:00			`"errors"`
TLS1.3 2019-08-02 00:01:19 +00:00			`"fmt"`
Refactor touchStone 2019-08-31 20:40:50 +00:00			`"github.com/cbeuw/Cloak/internal/ecdh"`
Use AEAD to encrypt session key in ServerHello to provide authentication of the identity of the server 2019-08-06 22:59:29 +00:00			`"github.com/cbeuw/Cloak/internal/util"`
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`"net"`
Untested server 2018-10-09 15:07:54 +00:00
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`log "github.com/sirupsen/logrus"`
			`)`
TLS1.3 2019-08-02 00:01:19 +00:00
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`type TLS struct{}`
Untested server 2018-10-09 15:07:54 +00:00
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`var ErrBadClientHello = errors.New("non (or malformed) ClientHello")`
Fix redirection 2019-08-03 12:26:57 +00:00
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`func (TLS) String() string { return "TLS" }`
			`func (TLS) HasRecordLayer() bool { return true }`
			`func (TLS) UnitReadFunc() func(net.Conn, []byte) (int, error) { return util.ReadTLS }`
Fail to parse ClientHello if the TLS record layer Content Type and versions are wrong 2019-08-16 23:35:28 +00:00
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`func (TLS) handshake(clientHello []byte, privateKey crypto.PrivateKey, originalConn net.Conn) (ai authenticationInfo, finisher func([]byte) (net.Conn, error), err error) {`
			`var ch *ClientHello`
			`ch, err = parseClientHello(clientHello)`
			`if err != nil {`
			`log.Debug(err)`
			`err = ErrBadClientHello`
			`return`
Untested server 2018-10-09 15:07:54 +00:00			`}`
Use AEAD to encrypt session key in ServerHello to provide authentication of the identity of the server 2019-08-06 22:59:29 +00:00
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`ai, err = unmarshalClientHello(ch, privateKey)`
Use AEAD to encrypt session key in ServerHello to provide authentication of the identity of the server 2019-08-06 22:59:29 +00:00			`if err != nil {`
Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`err = fmt.Errorf("failed to unmarshal ClientHello into authenticationInfo: %v", err)`
			`return`
Use AEAD to encrypt session key in ServerHello to provide authentication of the identity of the server 2019-08-06 22:59:29 +00:00			`}`

Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`finisher = func(sessionKey []byte) (preparedConn net.Conn, err error) {`
			`preparedConn = originalConn`
			`reply, err := composeReply(ch, ai.sharedSecret, sessionKey)`
			`if err != nil {`
			`err = fmt.Errorf("failed to compose TLS reply: %v", err)`
			`return`
			`}`
			`_, err = preparedConn.Write(reply)`
			`if err != nil {`
			`err = fmt.Errorf("failed to write TLS reply: %v", err)`
			`go preparedConn.Close()`
			`return`
			`}`
			`return`
Untested server 2018-10-09 15:07:54 +00:00			`}`

Refactor Transport and add tests 2020-01-22 18:37:01 +00:00			`return`
Untested server 2018-10-09 15:07:54 +00:00			`}`
Refactor TLS handshake 2019-08-06 14:50:33 +00:00
Refactor touchStone 2019-08-31 20:40:50 +00:00			`func unmarshalClientHello(ch *ClientHello, staticPv crypto.PrivateKey) (ai authenticationInfo, err error) {`
			`ephPub, ok := ecdh.Unmarshal(ch.random)`
			`if !ok {`
			`err = ErrInvalidPubKey`
			`return`
			`}`

			`ai.nonce = ch.random[:12]`

			`ai.sharedSecret = ecdh.GenerateSharedSecret(staticPv, ephPub)`
			`var keyShare []byte`
			`keyShare, err = parseKeyShare(ch.extensions[[2]byte{0x00, 0x33}])`
			`if err != nil {`
			`return`
			`}`

			`ai.ciphertextWithTag = append(ch.sessionId, keyShare...)`
			`if len(ai.ciphertextWithTag) != 64 {`
			`err = fmt.Errorf("%v: %v", ErrCiphertextLength, len(ai.ciphertextWithTag))`
			`return`
			`}`
			`return`
			`}`