tls-client_hello-parser 0.2.1

TLS ClientHello parser
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107

use std::{
    io::{Cursor, ErrorKind as IoErrorKind, Write as _},
    sync::Arc,
};

use rustls::{
    cipher_suite::TLS13_CHACHA20_POLY1305_SHA256, version::TLS13, ClientConfig, ClientConnection,
    ProtocolVersion, RootCertStore,
};

use tls_client_hello_parser::{ParseError, Parser};

#[test]
fn test_parse() -> Result<(), Box<dyn std::error::Error>> {
    {
        let mut parser = Parser::new();

        match parser.parse(&mut Cursor::new(b"")) {
            Err(ParseError::IoError(err)) if err.kind() == IoErrorKind::UnexpectedEof => {}
            x => panic!("{x:?}"),
        }
    }

    {
        let mut parser = Parser::new();

        let mut cursor = Cursor::new(b"foo");
        match parser.parse(&mut cursor) {
            Ok(None) => {}
            x => panic!("{x:?}"),
        }
        match parser.parse(&mut cursor) {
            Err(ParseError::IoError(err)) if err.kind() == IoErrorKind::UnexpectedEof => {}
            x => panic!("{x:?}"),
        }
    }

    {
        // https://github.com/rustls/rustls/blob/v/0.20.8/rustls/tests/api.rs#L4035
        let mut parser = Parser::new();

        let root_store = RootCertStore::empty();
        let client_config = ClientConfig::builder()
            .with_safe_defaults()
            .with_root_certificates(root_store)
            .with_no_client_auth();
        let client_config = Arc::new(client_config);
        let mut client = ClientConnection::new(client_config, "example.com".try_into()?)?;
        let mut buf = Vec::new();
        client.write_tls(&mut buf)?;

        let mut cursor = Cursor::new(Vec::<u8>::new());
        let buf_last_byte = buf.pop().expect("");
        for bytes in buf.chunks(10) {
            let cursor_position = cursor.position();
            cursor.write_all(bytes)?;
            cursor.set_position(cursor_position);

            match parser.parse(&mut cursor) {
                Ok(None) => {}
                x => panic!("{x:?}"),
            }
        }

        let cursor_position = cursor.position();
        cursor.write_all(&[buf_last_byte])?;
        cursor.set_position(cursor_position);

        match parser.parse(&mut cursor) {
            Ok(Some(chp)) => {
                assert_eq!(chp.client_hello()?.server_name(), Some("example.com"));
            }
            x => panic!("{x:?}"),
        }
    }

    {
        let mut parser = Parser::new();

        let root_store = RootCertStore::empty();
        let client_config = ClientConfig::builder()
            .with_cipher_suites(&[TLS13_CHACHA20_POLY1305_SHA256])
            .with_safe_default_kx_groups()
            .with_protocol_versions(&[&TLS13])?
            .with_root_certificates(root_store)
            .with_no_client_auth();
        let client_config = Arc::new(client_config);
        let mut client = ClientConnection::new(client_config, "xxx.com".try_into()?)?;
        let mut buf = Vec::new();
        client.write_tls(&mut buf)?;

        let mut cursor = Cursor::new(buf);

        match parser.parse(&mut cursor) {
            Ok(Some(chp)) => {
                assert_eq!(
                    chp.get_versions_extension(),
                    Some(&vec![ProtocolVersion::TLSv1_3])
                );
                assert_eq!(chp.client_hello()?.server_name(), Some("xxx.com"));
            }
            x => panic!("{x:?}"),
        }
    }

    Ok(())
}