h\dZddlZddlZddlZddlZddlmZddlmZddl m Z m Z ddl m Z ddlmZddlmZdd lmZmZdd lmZdd lmZdd lmZdd lmZddlmZdZGdde Z!Gdde!Z"Gdde!Z#Gdde Z$Gdde Z%Gdde Z&GddeZ'e&e_(dS)z TLS session handler. N)conf)raw) log_runtimewarning)Packet) inet_pton) TCPSession)repr_hexstrxor)TCP) Comp_NULL) TLS13_HKDF)PRF)Dictctjt} t|}|n"#t $rt d|icYSwxYw t|5}|D]}|dr| d}t|dks$|d|d kr2t d|iccdddS tj |d}n6#t$r)t d |dicYccdddSwxYw tj |d }n6#t$r)t d |d icYccdddSwxYw|||dvrt d |d|||d|< dddn #1swxYwY|S#t$r*}t d |t!|icYd}~Sd}~wwxYw)zJ Parses a NSS Keys log and returns unpacked keys in a dictionary. zCannot open NSS Key Log: %s# rzInvalid NSS Key Log Entry: %sNzInvalid ClientRandom: %szInvalid Secret: %szDuplicated entry for %s !zCannot read NSS Key Log: %s %s) collections defaultdictdictopencloseFileNotFoundErrorr startswithstripsplitlenupperbinascii unhexlify ValueErrorUnicodeDecodeErrorstr)filenamekeysfdlinedata client_randomsecretexs \/mounts/lovelace/software/anaconda3/lib/python3.11/site-packages/scapy/layers/tls/session.py load_nss_keysr0!s   "4 ( (D (^^  -x888  (^^ 6r 6 6??3''zz||))#..t99>>T!WQ %?%?;TZZ\\JJJII 6 6 6 6 6 6 6 6$,$6tAw$?$?MM!6Q@@@IIII 6 6 6 6 6 6 6 6%/Q88FF!0$q':::IIII' 6 6 6 6 6 6 6 6" !DaM117aAAA/5T!W m,,3 6 6 6 6 6 6 6 6 6 6 6 6 6 6 6 66 0(CGGDDD s#?AA"H1BH HD98H9"E,H H+E,,H0F  H "F>-H0 H=F>>r8r7s r/__init__zconnState.__init__{s'  ,    N N N N N N1K&;;???&  C D D D F*?,,'..00!,,.. ((**   %*f44  #{2 '0022 #y1 #,,..DI9-DL & "49>#7#7#9#9::DIII;/4kBBDHHHc tjr3|r3tjd|j|j|t |dSdSdS)NzTLS: %s %s %s: %s)r debug_tlsrdebugr;r<r )rRrNr-s r/ debug_reprzconnState.debug_reprsb > 0f 0  1"1"h"&v..  0 0 0 0 0 0 0 0 0rVrVcR|j}|j||||j}d}|jdkr |jdks|jdkr |jdkrd}d}|j}|jdks |jd krU|} |r| |jj z } | |jj z} || | } | d | |d |jj zz }nd} |} |r | |j z } | |j z} || | } |j j r0|j } |j| |||j|j| } | d | |d |j zz }|} |jd kr|r | |jz } | |jz} n!|jd kr|r | |jz } | |jz} |jd|_|j|_n+|| |_|jj|_|jdkr || }n|jd krh|| | }|j j r/|j} |j|||j|j| }|| |}| d|n:|jd kr/|| | }d}|| ||}| d|||_dS)NFclientr4r3writeTrstreamblock mac_secretr cipher_secretr9zblock ivz aead fixed iv)r>rQderive_key_block key_block_lenr;r<rCrGrKkey_lenrZrAexportexpanded_key_lenpostprocess_key_for_export block_size fixed_iv_lenrHrIrJrLgenerate_iv_for_exportrD)rRr, server_random master_secretcs key_block skip_firstposrCstartendr`rareqLenrDivfixed_ivnonce_explicit_inits r/ derive_keyszconnState.derive_keyssE  H--m.;.;.0.>@@   H , ,V1C1C$00TX5H5HJ]  Ox ' 'Z_-G-GE -,,"+--C"59-J OOL* 5 5 5 1r{** *CCJ  ( Z' 'Ej((!%), 9  H0F H?? @M@M@D@S@D@F HHM 777 q:%%% ?g % % /..*//CC _ & & 100*11C ; DI%-DLL J//DI9-DL ?h & &Z ..FF _ ' '59%By =#.X44]5B595H59X5; ==  Z r22F OOJ + + + + _ & & s+H"#  Z x9LMMF OOOX 6 6 6 rVcd}|jdkr |jdks|jdkr |jdkrd}|jj}d}|r ||jz }||jz}|||}|||_|d|d S) z There is actually only one key, the CLIENT-READ-KEY or -WRITE-KEY. Note that skip_first is opposite from the one with SSLv3 derivation. Also, if needed, the IV should be set elsewhere. Tr\r4r3r]FrraN)r;r<r>rCrdrDrZ)rR key_materialrorCrqrrras r/sslv2_derive_keyszconnState.sslv2_derive_keyss  H , ,V1C1C$00TX5H5HJ%0   ( Z' 'Ej(($U3Y/  j//  77777rVc|jj}|j}|j}|j|dd|}|j|dd|}||||_dS)NskeyrVsiv)r>rCrdrirP expand_labelrD)rRryrCrdiv_len write_keywrite_ivs r/tls13_derive_keyszconnState.tls13_derive_keys,sj%0 $(I**<gNN 9)),sFKK jH55 rVc t|j|j|jt |jt |j|j}|j |_|j r|j j |j _ |S)zX This is used mostly as a way to keep the cipher state and the seq_num. )r;rSr:rTr>r8) r2r;r<r:rGr@r>r8rDsnapshotrHkey)rRsnaps r/rzconnState.snapshot4s|(;'+x!%)-d.>)?)?%)$*:%;%;%)%5 777 k**,, 9 * IMDIM rVcd|jz}|d|jj|jjfzz }|d|jj|jjfzz }d}||S)NzConnection end : %s zCipher suite : %s (0x%04x) zCompression : %s (0x%02x) )r;r!r>rNvalr@ expandtabs)rRrestabsizes r/__repr__zconnState.__repr__Cs%(;(A(A(C(CC /43C3H373C3G3II I /43C3H373C3G3II I~~g&&&rV)rVrVrV) __name__ __module__ __qualname____doc__r rUrZrwrzrrrrVr/r2r2YsD!)%!*!# /C/C/C/Cb000#&"%"%____B888.666   '''''rVr2ceZdZdZdS) readConnStatec .tj|fddi|dS)NrSr4r2rUrRkargss r/rUzreadConnState.__init__Ns&4??v??????rVNrrrrUrrVr/rrMs(@@@@@rVrceZdZdZdS)writeConnStatec .tj|fddi|dS)NrSr]rrs r/rUzwriteConnState.__init__Ss&4@@w@%@@@@@rVNrrrVr/rrRs(AAAAArVrceZdZdZ ddZfdZdZdZdZd e fd Z d Z d Z d Z ddZdZdZdZdZdZdZdZdZdZdZdZddZdZxZS) tlsSessiona This is our TLS context, which gathers information from both sides of the TLS connection. These sides are represented by a readConnState instance and a writeConnState instance. Along with overarching network attributes, a tlsSession object also holds negotiated, shared information, such as the key exchange parameters and the master secret (when available). The default connection_end is "server". This corresponds to the expected behaviour for static exchange analysis (with a ClientHello parsed first). Nr3c Xd|_||_||_||_||_||_d|_d|_||_|/t||_ |j n||_ |/t||_ |j n||_ d|_d|_d|_d|_g|_d|_d|_d|_d|_g|_d|_d|_d|_d|_d|_d|_d|_d|_i|_ i|_!i|_"i|_#d|_$d|_%d|_&d|_'d|_(d|_)g|_*d|_+d|_,g|_-d|_.d|_/d|_0d|_1d|_2d|_3d|_4d|_5d|_6i|_7d|_8d|_9d|_:d|_;d|_<d|_=g|_>g|_?g|_@d|_Ad|_Bd|_CdS)NF)r;r5)Dfrozenipsrcipdstsportdportsidfirsttcpsockr;rwcsrwrrcspwcstriggered_pwcs_commitprcstriggered_prcs_commit server_certs server_keyserver_rsa_keynss_keysserver_tmp_rsa_key client_certs client_keykx_groupclient_kx_ffdh_paramsclient_kx_ecdh_paramsclient_kx_privkeyclient_kx_pubkeyserver_kx_privkeyserver_kx_pubkeytls13_client_privsharestls13_client_pubsharestls13_server_privsharetls13_server_pubshareadvertised_tls_versionr8r,rkpre_master_secretrladvertised_sig_algsselected_sig_algclient_session_ticketsslv2_common_cssslv2_connection_idsslv2_challengesslv2_challenge_clientcertsslv2_key_materialtls13_psk_secrettls13_early_secrettls13_dhe_secrettls13_handshake_secrettls13_master_secrettls13_derived_secretstls13_cert_req_ctxtpost_handshakepost_handshake_authtls13_ticket_ciphersuite tls13_retrymiddlebox_compatibilityhandshake_messageshandshake_messages_parsedpost_handshake_messagesextms session_hashencrypt_then_mac) rRrrrrrr;rrs r/rUztlsSession.__init__gs       - ;%^DDDDH H " " " "DH ;$NCCCDH H " " " "DH  %*" %*""  #'   &*"%)""& $!% $ (*$&(#&(#%'"'-# "!!%!$& $&*" "#' #*.'"&!%"& $&*##' %'"#( ##( (,% ',$#%)+&(*$   %rVc~|dkrt|dr|jr ||j_t|dr|jr ||j_t|dr|jr ||j_t|dr|jr ||j_t t|||dS)Nr;rrrr) hasattrrr;rrrsuperr __setattr__)rRrNr __class__s r/rztlsSession.__setattr__s # # #tU## . .*-'tU## . .*-'tV$$ / /+. (tV$$ / /+. ( j$++D#66666rVct|trc|}|j|_|j|_ |jj|_|jj|_n#t$rYnwxYw|j |j |_ dSdSdSN) isinstancer rr underlayersrcrdstrAttributeErrorrseq)rR _underlayertcps r/set_underlayerztlsSession.set_underlayer(s k3 ' ' (CDJDJ  ^/  ^/ !    }$ #  ( (%$s"A A! A!c|j|jc|_|_|j|jc|_|_|j|jc|_|_|jr d|j_|jr d|j_|j|jc|_|_|jr d|j_|jr d|j_|j |j c|_ |_ |j dkrd|_ n|j dkrd|_ |S)a This function takes a tlsSession object and swaps the IP addresses, ports, connection ends and connection states. The triggered_commit are also swapped (though it is probably overkill, it is cleaner this way). It is useful for static analysis of a series of messages from both the client and the server. In such a situation, it should be used every time the message being read comes from a different side than the one read right before, as the reading state becomes the writing state, and vice versa. For instance you could do:: client_hello = open('client_hello.raw').read() m1 = TLS(client_hello) m2 = TLS(server_hello, tls_session=m1.tls_session.mirror()) m3 = TLS(server_cert, tls_session=m2.tls_session) m4 = TLS(client_keyexchange, tls_session=m3.tls_session.mirror()) r4r]r\r3) rrrrrrr<rrrrr;rRs r/mirrorztlsSession.mirror7s*"&TZ DJ!%TZ DJ!Xtx$( 8 "!DHL 8 #"DHL#y$) 49 9 #"DIM 9 $#DIM  &(B ?"D$>  ( * *"*D    H , ,"*D  rVc|jtd|jtd|jtd|jr|jtd|jj|j|j|j|j|j}||_ tj r$tj dt|dSdS)Nz8Missing pre_master_secret while computing master_secret!z4Missing client_random while computing master_secret!z4Missing server_random while computing master_secret!z3Missing session hash while computing master secret!TLS: master secret: %s)rrr,rkrrrrQcompute_master_secretrlrrXrrYr )rRmss r/rz tlsSession.compute_master_secretgs  ! ) N O O O   % J K K K   % J K K K : K$+3 I J J J Y] 0 01G151C151C15151B DD   > F  6 E E E E E F FrVreturnc|jr d|jvrdS|j|jdvr|jd|j|_dSdS)N CLIENT_RANDOMFT)rr,rlrs r/ use_nss_master_secret_if_presentz+tlsSession.use_nss_master_secret_if_presentzsS} t} D D5  !? ? ?!%!?@R!SD 4urVc|js||j|j|j|j|j|j|j|jdS)N)r,rkrl)rlrrrwr,rkrrs r/compute_ms_and_derive_keysz%tlsSession.compute_ms_and_derive_keyss! )  & & ( ( ( D,>,0,>,0,>  @ @ @ D,>,0,>,0,>  @ @ @ @ @rVc|jtd|jtd|jtd|jj|j|j|jd|jjjz}||_ tj rKtj dt|jtj dt|dSdS)Nz3Missing master_secret while computing key_material!z/Missing challenge while computing key_material!z3Missing connection_id while computing key_material!rrzTLS: key material: %s)rlrrrrrQrbrDrdrrrXrrYr )rRkms r/compute_sslv2_key_materialz%tlsSession.compute_sslv2_key_materials   % I J J J   ' E F F F  # + I J J J Y] + +D,>,0,@,0,D,- 0@0H,HJJ#% > E  6AS8T8T U U U  5x|| D D D D D E ErVc||j|j|j|jdS)N)ry)rrrzrrrs r/ compute_sslv2_km_and_derive_keysz+tlsSession.compute_sslv2_km_and_derive_keyssR ''))) ##1H#III ##1H#IIIIIrVFcF|jr|jjr |jj}n/|jr|jjr |jj}ntd}|j |d|j|_d|jvrE|r||jdd}n||jdd}||jd<||jdd |j }||jd<||jd d |j }||jd <|j d kr%|jr|j |dSdS|j d kr#|jr|j |dSdSdS) a This function computes the Early Secret, the binder_key, the client_early_traffic_secret and the early_exporter_master_secret (See RFC8446, section 7.1). The parameter external is used for the computation of the binder_key: - For external PSK provisioned outside out of TLS, the parameter external must be True. - For resumption PSK, the parameter external must be False. If no argument is specified, the label "res binder" will be used by default. Ciphers key and IV are updated accordingly for 0-RTT data. self.handshake_messages should be ClientHello only. sha256N binder_keys ext binderrVs res binders c e trafficclient_early_traffic_secrets e exp masterearly_exporter_secretr3r\) rrPrrrextractrr derive_secretjoinrr;r)rRexternalrPbkcetseess r/compute_tls13_early_secretsz&tlsSession.compute_tls13_early_secretss* 9 ( (9>DD Y (49> (9>DDh''D  " *&*ll4373H'J'JD # t9 9 9 -''(?(5(+--''(?(5(+--8:D &| 4!!$"9"0"%((4+B"C"CEEEI"#@A  !8!0!$$*A!B!BDD?B"#:;  ( * *y 2 ++D11111 2 2  H , ,y 2 ++D11111- , 2 2rVc6|jr |jj}n%|jr |jj}ntddS|j |d|j|_||jdd}|||j|_ ||j dd |j }||j d<||j dd |j }||j d<dS) z Ciphers key and IV are updated accordingly for Handshake data. self.handshake_messages should be ClientHello...ServerHello. No HKDF. This is abnormal.NderivedrVs c hs trafficclient_handshake_traffic_secrets s hs trafficserver_handshake_traffic_secret) rrPrrrrrrrrrrr)rRrPr-chtsshtss r/compute_tls13_handshake_secretsz*tlsSession.compute_tls13_handshake_secretss, 9 9>DD Y 9>DD 0 1 1 1 F  " *&*ll4373H'J'JD ###D$;ZMM&*ll64;P&Q&Q#!!$"="1"%((4+B"C"CEEIM"#DE!!$"="1"%((4+B"C"CEEIM"#DEEErVc*|jr|jjr |jj}n1|jr|jjr |jj}ntddS||jdd}||d|_||jdd|j }|g|j d<||jdd|j }|g|j d<||jd d|j }||j d <|j d kr|j |dS|j d kr|j |dSdS) z Ciphers key and IV are updated accordingly for Application data. self.handshake_messages should be ClientHello...ServerFinished. r Nr rVs c ap trafficclient_traffic_secretss s ap trafficserver_traffic_secretss exp masterexporter_secretr3r\) rrPrrrrrrrrrr;r)rRrPtmpcts0sts0ess r/compute_tls13_traffic_secretsz(tlsSession.compute_tls13_traffic_secretss 9  9>DD Y 49> 9>DD 0 1 1 1 F  !DD  H , ,9>D    8 - #)@ A ACC;="#6777rVc|jjr|jj}|jj}n$|jjr|jj}|jj}|dkr|dkr^|jd}|d}||dd|}|||j |d S|dkr^|jd}|d} || dd|} || |j | d Sd S|d kr|dkr^|jd}|d}||dd|}|||j |d S|dkr`|jd}|d} || dd|} || |j | d Sd Sd S) z= Ciphers key and IV are updated accordingly. r4r\rrs traffic updrVr3rr]N) rrPrF digest_sizerrr|appendrrr) rRr;rSrPhlctsctsNctsN_1stsstsNstsN_1s r/"compute_tls13_next_traffic_secretsz-tlsSession.compute_tls13_next_traffic_secretsms 8= '8=D&BB X] '8=D&B F " "))01IJ2w**4bII 6""" ++F333338++01IJ2w**4bII 6""" ++F33333 ,+g % %))01IJ2w**4bII 6""" ++F333338++01IJ2w**4bII 6""" ++F33333& %,+rVcv|jjjdko$d|jjjvS)Nr_F)rrDrGreadyvaluesrs r/consider_read_paddingz tlsSession.consider_read_paddings6$/>dho3::<<< ?rVc,|jjjdkS)Nr_)rrDrGrs r/consider_write_paddingz!tlsSession.consider_write_paddingsx#w..rVc|dkrdS|dkS)Nr^Fir)rRversion cipher_types r/use_explicit_ivztlsSession.use_explicit_ivs ( " "5&  rVc,tjd|j}tjd|j}tj}d|jvr tj}|t||jz }|t||j z }t||S)N!H:) structpackrrsocketAF_INETrAF_INET6rrr )rRs1s2familys r/rFztlsSession.hashs} [tz * * [tz * * $*  _F i +++ i +++b"~~rVcZd}|j|jkr2|j|jkr"|j|jkr|j|jkrd}|sB|j|jkr2|j|jkr"|j|jkr|j|jkrd}|r |jr|jr|j|jkSdSdS)NFT)rrrrr)rRotheroks r/eqz tlsSession.eqs  J%+ % %$* *C*C ek))djEK.G.GB  J%+ % %$* *C*C ek))djEK.G.GB  x -EI -x59,,4urVc zt|j}t|dkr |dddz}|rK|j|jkr;|jdt |jd|jdt |jS|jdt |jd|jdt |jS)N ...r=z > )reprrr rrr&rr)rRrrs r/rNztlsSession.reprs48nn s88b==crc(U"C  C;, ::&*jjj#dj////&*jjj#dj///C C"&***c$*oooo"&***c$*ooo? ?rVc*|Sr)rNrs r/rztlsSession.__repr__syy{{rV)NNNNNr3NNFr)rrrrrUrrrrboolrrrrrrrrr!r%r0r4r6r:rFrIrNr __classcell__rs@r/rr[s  $(-1 (# m&m&m&m&f 7 7 7 7 7 ( ( (,,,`FFF&$ @ @ @EEE"JJJ;2;2;2;2zMMM<&.&.&.P...,D,D,D\ = = ='4'4'4V??? ///!!!$????rVrceZdZdZgdZdZgZ ddZfdZd Z d Z d Z d Z dd Z fdZdZfdZeZdZddZedZxZS)_GenericTLSSessionInheritancea Many classes inside the TLS module need to get access to session-related information. For instance, an encrypted TLS record cannot be parsed without some knowledge of the cipher suite being used and the secrets which have been negotiated. Passing information is also essential to the handshake. To this end, various TLS objects inherit from the present class. ) tls_session rcs_snap_init wcs_snap_initzDummy Generic TLS PacketNrc ( |jdu}n#t$rd}YnwxYwd}|r|d}t|_n||_|jj|_|jj|_t|tr^|j |tj /tj #ttj t_ tjr|rtj|j} | rTtj tj | _| j|jjkr| |_n`| |_nFtj tj |j_tj|j|jjdkr+tjj} |jjs| r | |j_t1j|f||||d|dS)NTFr3)_pktpost_transform _internalr)rV ExceptionrrrrWrrXrr rrtls_nss_filename tls_nss_keysr0tls_session_enable tls_sessionsfindrrraddr;rrrU) rRr[r\r]rrVfieldssetmenewsesssrks r/rUz&_GenericTLSSessionInheritance.__init__s $,EE   EEE   /"#-<<  #. !-1::<<!-1::<< k3 ' ' :   + +K 8 8 8$0$,(5d6K(L(LD%& @ @)..t/?@@A @,8)-):AJ7d&6&<<???.(::'6'6::69D$3 "4"+ " "  " " " " "s cd|dkrdStt||S)zT The tls_session should be found only through the normal mechanism. rVN)rrU __getattr__)rRattrrs r/rkz)_GenericTLSSessionInheritance.__getattr__s4 = 42D99EEdKKKrVcdS)z post_{build, dissection}_tls_session_update() are used to update the tlsSession context. The default definitions below, along with tls_session_update(), may prevent code duplication in some cases. NrrRmsg_strs r/tls_session_updatez0_GenericTLSSessionInheritance.tls_session_update s rVc0||dSrrprns r/post_build_tls_session_updatez;_GenericTLSSessionInheritance.post_build_tls_session_update( (((((rVc0||dSrrrrns r/"post_dissection_tls_session_updatez@_GenericTLSSessionInheritance.post_dissection_tls_session_update+rtrVcFtj|}|j|_|Sr)rcopyrV)rRpkts r/rxz"_GenericTLSSessionInheritance.copy.s k$* rVc Ftj|fd|i|}|j|_|S)Npayload)r clone_withrV)rRr{rrys r/r|z(_GenericTLSSessionInheritance.clone_with3s.??g???* rVcRtt|Sr)rrU __bytes__rRrs r/ raw_statefulz*_GenericTLSSessionInheritance.raw_stateful8s 2D99CCEEErVc*|Sr)rrs r/ str_statefulz*_GenericTLSSessionInheritance.str_stateful;s  """rVcl|j}|j}|j}|j}|j}|j|_d|_|j}d|_tt| }||_||_||_||_||_|S)a The __bytes__ call has to leave the connection states unchanged. We also have to delete raw_packet_cache in order to access post_build. For performance, the pending connStates are not snapshotted. This should not be an issue, but maybe pay attention to this. The previous_freeze_state prevents issues with calling a raw() calling in turn another raw(), which would unfreeze the session too soon. NT) rVrrrraw_packet_cacheraw_packet_cache_fieldsrWrrrUr~) rRrhrcs_snapwcs_snaprpc_snap rpcf_snapprevious_freeze_state built_packetrs r/r~z'_GenericTLSSessionInheritance.__bytes__>s  5>>##5>>##(0 " $ !:DAAKKMM ( ('0$rVc8|j}|j}|j}|j|_t |}d|_|||d|_||_||_dS)a Rebuild the TLS packet with the same context, and then .show() it. We need self.__class__ to call the subclass in a dynamic way. Howether we do not want the tls_session.{r,w}cs.seq_num to be updated. We have to bring back the init states (it's possible the cipher context has been updated because of parsing) but also to keep the current state and restore it afterwards (the raw() call may also update the states). T)rVFN) rVrrrrWrrrshow)rRrhrrrs r/show2z#_GenericTLSSessionInheritance.show2_s  5>>##5>>##"4yy  |3388:::rVTcTddlm}ddlm}|jr1t |jt rt|d|j}n_d}|jr!t |jtr|j}d|j |dt|d|j}|||gfS)NrTLSTLS13_namezTLS )rz / ) scapy.layers.tls.recordrscapy.layers.tls.record_tls13rrrrUgetattrrNr rVrN)rRfirstrrsummaryrs r/ mysummaryz'_GenericTLSSessionInheritance.mysummaryws//////777777 O  t(E F F dGTY77GGK .:dos#C#C ."o  %%+%>>>>gty111Ge $$rVcddlm}ddlm}|||fvr_t jd|ddddz}t ||kr#d|vr ||S|dt}| d}tj rt} | |tj| }|r{|j|jkr|}|j|jkrGt)jdt-|ztj|d d}|||| SdS||S) Nrrrr<roriginalzCTLS: session %s is a duplicate of a previous dissection. Discard itT)force)rrV)rrrrr>unpackr r rxremove_payloadrrarrrbrcrrrrrinforNrem) clsr+metadatasessionrrlengthrrVrhs r/tcp_reassemblez,_GenericTLSSessionInheritance.tcp_reassembles 0/////777777 3,  ]4ac33A6:F4yyF""X--3t99$%j1#6;;== ))+++" * /" A$$Z000"&"3"8"8";";K" /&, 0@@@*5*<*<*>*>K&/:>AA',!9;? ;L;L!M!-11+T1JJJ*.Ks4Z[QQQQ-#"03t99 rV)rYNrNNr)T)rrrr __slots__rN fields_descrUrkrprsrvrxr|rrr~__str__rr classmethodrrRrSs@r/rUrUsUBAAI %DK?@/31"1"1"1"fLLLLL   ))))))  FFFFF###>G0%%%%$[rVrUc.eZdZdZdZddZdZdZdS) _tls_sessionsc"i|_d|_dSr)sessionsrrs r/rUz_tls_sessions.__init__s "rVc||}|rtjddS|}||jvr"|j||dS|g|j|<dSNz.TLS: previous session shall not be overwritten)rcrrrFrr()rRrrhhs r/rdz_tls_sessions.adds IIg      M N N N F LLNN    M!  # #G , , , , , 'yDM!   rVFc|s-||}|rtjddS|}|j||dSr)rcrrrFrremove)rRrrrhrs r/rz_tls_sessions.remsh  '""A  !QRRR LLNN a(((((rVc< |}n#t$rYdSwxYw||jvrJ|j|D]<}||r%tjrt jd||cS=tjrt jd|dS)NzTLS: found session matching %sz%TLS: did not find session matching %s)rFr^rrIrrXrr)rRrrks r/rcz_tls_sessions.finds  AA   44    ]1%  44==~N#()I1MMMHHH > O  Dg N N Nts  %%cdg}|jD]u}|D]p}d|j|jfz}d|j|jfz}t |j}t|dkr |dddz}| |||fqvdt|D}d td|d tfd |S) N)zFirst endpointzSecond endpointz Session IDz%s[%d]rKrLrMc3HK|]}td|DVdS)c34K|]}t|VdSr)r ).0ys r/ z3_tls_sessions.__repr__...s(**1A******rVN)max)rxs r/rz)_tls_sessions.__repr__..s9>>qC*******>>>>>>rVz c d|zS)Nz%%-%dsr)rs r/z(_tls_sessions.__repr__..s hlrV c|zSrr)rfmts r/rz(_tls_sessions.__repr__..s sQwrV) rr3rrrrrNrr r(ziprmap) rRrlirhrrrcolwidthrs @r/rz_tls_sessions.__repr__s BC-&&(( , ,B , ,!'17!33!'17!3315kks88b==crc(U*C Cc?++++  ,?>CI>>>ii22H==>>yy....44555rVNrP)rrrrUrdrrcrrrVr/rrsd### ) ) )))))    6 6 6 6 6rVrc(eZdZfdZfdZxZS) TLSSessionctd|dd}tt|j|i|t j|_dt _|r|t j_ dSdS)NzTLSSession is deprecated and will be removed in a future version. Please use TCPSession instead with conf.tls_session_enable=TruerT) rpoprrrUrra_old_conf_statusrbr)rRargskwargsrrs r/rUzTLSSession.__init__s N    $4d;;(j$($9&999 $ 7"&  >/=D  , , , > >rVct|jt_tt|Sr)rrrarr toPacketListrs r/rzTLSSession.toPacketLists*"&"7Z&&33555rV)rrrrUrrRrSs@r/rrsQ > > > > >666666666rVr))rr"rr@r> scapy.configr scapy.compatr scapy.errorrr scapy.packetrscapy.pton_ntoprscapy.sessionsr scapy.utilsr r scapy.layers.inetr #scapy.layers.tls.crypto.compressionr scapy.layers.tls.crypto.hkdfrscapy.layers.tls.crypto.prfrtypingrr0objectr2rrrrUrrrbrrVr/rs ,,,,,,,,%%%%%%%%%%%%((((((((!!!!!!999999333333++++++,,,pq'q'q'q'q'q'q'q'h@@@@@I@@@ AAAAAYAAAv v v v v v v v |OOOOOFOOOl6666666666F666666r66666666("MOOrV