CryptoDataHub 0.12.6__py3-none-any.whl

cryptodatahub/tls/client.py

@@ -0,0 +1,220 @@
+# -*- coding: utf-8 -*-
+
+import collections
+import enum
+import six
+
+import attr
+
+from cryptodatahub.common.entity import Client
+from cryptodatahub.common.types import (
+    ClientVersion,
+    CryptoDataEnumBase,
+    CryptoDataParamsBase,
+    convert_client_version,
+    convert_dict_to_object,
+    convert_enum,
+    convert_iterable,
+)
+
+from cryptodatahub.tls.algorithm import (
+    TlsCertificateCompressionAlgorithm,
+    TlsCipherSuite,
+    TlsCompressionMethod,
+    TlsECPointFormat,
+    TlsExtensionType,
+    TlsNamedCurve,
+    TlsProtocolName,
+    TlsPskKeyExchangeMode,
+    TlsSignatureAndHashAlgorithm,
+    TlsTokenBindingParamater,
+)
+from cryptodatahub.tls.version import TlsVersion
+
+
+@attr.s(frozen=True)
+class ClientTokenBindingParams(CryptoDataParamsBase):
+    parameters = attr.ib(
+        converter=convert_iterable(convert_enum(TlsTokenBindingParamater)),
+        validator=attr.validators.deep_iterable(attr.validators.instance_of(TlsTokenBindingParamater))
+    )
+    protocol_version = attr.ib(validator=attr.validators.instance_of(six.string_types))
+
+
+@attr.s(frozen=True)
+class ClientGreaseParams(CryptoDataParamsBase):
+    cipher_suites = attr.ib(default=False, validator=attr.validators.instance_of(bool))
+    extension_types = attr.ib(default=False, validator=attr.validators.instance_of(bool))
+    extensions = attr.ib(
+        default=[],
+        converter=convert_iterable(convert_enum(TlsExtensionType)),
+        validator=attr.validators.deep_iterable(attr.validators.instance_of(TlsExtensionType))
+    )
+
+
+class ClientConfigurationChange(enum.IntEnum):
+    pass
+
+
+@attr.s(frozen=True)
+class ClientVersionedParamsBase(CryptoDataParamsBase):
+    client = attr.ib(converter=convert_enum(Client), validator=attr.validators.instance_of(Client))
+    first_version = attr.ib(converter=convert_client_version(), validator=attr.validators.instance_of(ClientVersion))
+    last_version = attr.ib(converter=convert_client_version(), validator=attr.validators.instance_of(ClientVersion))
+
+    def __str__(self):
+        return '{} ({} - {})'.format(
+            self.client.value, self.first_version, self.last_version
+        )
+
+
+@attr.s(frozen=True)
+class ClientVersionedParams(ClientVersionedParamsBase):
+    changes = attr.ib(
+        converter=frozenset,
+        validator=attr.validators.deep_iterable(attr.validators.instance_of(ClientConfigurationChange))
+    )
+
+
+@attr.s(frozen=True)
+class ClientExtensionParams(CryptoDataParamsBase):  # pylint: disable=too-many-instance-attributes
+    application_layer_protocol_negotiation = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsProtocolName)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsProtocolName))
+        )
+    )
+    application_layer_protocol_settings = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsProtocolName)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsProtocolName))
+        )
+    )
+    compress_certificate = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsCertificateCompressionAlgorithm)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsCertificateCompressionAlgorithm))
+        )
+    )
+    delegated_credentials = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsSignatureAndHashAlgorithm)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsSignatureAndHashAlgorithm))
+        )
+    )
+    ec_point_formats = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsECPointFormat)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsECPointFormat))
+        )
+    )
+    key_share = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsNamedCurve)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsNamedCurve))
+        )
+    )
+    key_share_reserved = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsNamedCurve)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsNamedCurve))
+        )
+    )
+    post_handshake_auth = attr.ib(default=None)
+    psk_key_exchange_modes = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsPskKeyExchangeMode)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsPskKeyExchangeMode))
+        )
+    )
+    record_size_limit = attr.ib(default=None, validator=attr.validators.optional(attr.validators.instance_of(int)))
+    signature_algorithms = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsSignatureAndHashAlgorithm)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsSignatureAndHashAlgorithm))
+        )
+    )
+    supported_groups = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsNamedCurve)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsNamedCurve))
+        )
+    )
+    supported_versions = attr.ib(
+        default=None,
+        converter=convert_iterable(convert_enum(TlsVersion)),
+        validator=attr.validators.optional(
+            attr.validators.deep_iterable(attr.validators.instance_of(TlsVersion))
+        )
+    )
+    token_binding = attr.ib(
+        default=None,
+        converter=convert_dict_to_object(ClientTokenBindingParams),
+        validator=attr.validators.optional(attr.validators.instance_of(ClientTokenBindingParams))
+    )
+
+
+@attr.s(frozen=True)
+class ClientCapabilities(CryptoDataParamsBase):  # pylint: disable=too-many-instance-attributes
+    tls_versions = attr.ib(
+        converter=convert_iterable(convert_enum(TlsVersion)),
+        validator=attr.validators.deep_iterable(attr.validators.instance_of(TlsVersion))
+    )
+    cipher_suites = attr.ib(
+        converter=convert_iterable(convert_enum(TlsCipherSuite)),
+        validator=attr.validators.deep_iterable(attr.validators.instance_of(TlsCipherSuite))
+    )
+    compression_methods = attr.ib(
+        converter=convert_iterable(convert_enum(TlsCompressionMethod)),
+        validator=attr.validators.deep_iterable(attr.validators.instance_of(TlsCompressionMethod))
+    )
+    fallback_scsv = attr.ib(validator=attr.validators.instance_of(bool))
+    empty_renegotiation_info_scsv = attr.ib(validator=attr.validators.instance_of(bool))
+    grease = attr.ib(
+        converter=convert_dict_to_object(ClientGreaseParams),
+        validator=attr.validators.instance_of(ClientGreaseParams)
+    )
+    extension_types = attr.ib(
+        converter=convert_iterable(convert_enum(TlsExtensionType)),
+        validator=attr.validators.deep_iterable(attr.validators.instance_of(TlsExtensionType))
+    )
+    extension_params = attr.ib(
+        converter=convert_dict_to_object(ClientExtensionParams),
+        validator=attr.validators.optional(attr.validators.instance_of(ClientExtensionParams))
+    )
+
+    def _asdict(self):
+        capabilities_dict = attr.asdict(self, dict_factory=collections.OrderedDict)
+
+        capabilities_dict['extension_params'] = collections.OrderedDict([
+            (param_name, param_value)
+            for param_name, param_value in capabilities_dict['extension_params'].items()
+            if param_value is not None
+        ])
+
+        return capabilities_dict
+
+
+@attr.s(frozen=True)
+class ClientParams(CryptoDataParamsBase):  # pylint: disable=too-many-instance-attributes
+    meta = attr.ib(
+        converter=convert_dict_to_object(ClientVersionedParams),
+        validator=attr.validators.instance_of(ClientVersionedParams)
+    )
+    capabilities = attr.ib(
+        converter=convert_dict_to_object(ClientCapabilities),
+        validator=attr.validators.instance_of(ClientCapabilities)
+    )
+
+
+TlsClient = CryptoDataEnumBase('TlsClient', CryptoDataEnumBase.get_json_records(ClientParams))

cryptodatahub/tls/compression-method.json

@@ -0,0 +1,20 @@
+{
+    "NULL": {
+        "name": "null",
+        "long_name": "no compression",
+        "code": 0,
+        "_code_in_hex": "0x00"
+    },
+    "DEFLATE": {
+        "name": "DEFLATE",
+        "long_name": null,
+        "code": 1,
+        "_code_in_hex": "0x01"
+    },
+    "LZS": {
+        "name": "LZS",
+        "long_name": "Lempel-Ziv-Stac compression",
+        "code": 64,
+        "_code_in_hex": "0x40"
+    }
+}

cryptodatahub/tls/ec-point-format.json

@@ -0,0 +1,20 @@
+{
+    "UNCOMPRESSED": {
+        "name": "uncompressed",
+        "long_name": null,
+        "code": 0,
+        "_code_in_hex": "0x00"
+    },
+    "ANSIX962_COMPRESSED_PRIME": {
+        "name": "ANSI X.962 compressed prime",
+        "long_name": null,
+        "code": 1,
+        "_code_in_hex": "0x01"
+    },
+    "ANSIX962_COMPRESSED_CHAR2": {
+        "name": "ANSI X.962 compressed char2",
+        "long_name": null,
+        "code": 2,
+        "_code_in_hex": "0x02"
+    }
+}

cryptodatahub/tls/extension-type.json

@@ -0,0 +1,282 @@
+{
+    "SERVER_NAME": {
+        "_standard": "RFC6066",
+        "_code_in_hex": "0x0000",
+        "code": 0
+    },
+    "MAX_FRAGMENT_LENGTH": {
+        "_standard": "RFC6066",
+        "_code_in_hex": "0x0001",
+        "code": 1
+    },
+    "CLIENT_CERTIFICATE_URL": {
+        "_standard": "RFC6066",
+        "_code_in_hex": "0x0002",
+        "code": 2
+    },
+    "TRUSTED_CA_KEYS": {
+        "_standard": "RFC6066",
+        "_code_in_hex": "0x0003",
+        "code": 3
+    },
+    "TRUNCATED_HMAC": {
+        "_standard": "RFC6066",
+        "_code_in_hex": "0x0004",
+        "code": 4
+    },
+    "STATUS_REQUEST": {
+        "_standard": "RFC6066",
+        "_code_in_hex": "0x0005",
+        "code": 5
+    },
+    "USER_MAPPING": {
+        "_standard": "RFC4681",
+        "_code_in_hex": "0x0006",
+        "code": 6
+    },
+    "CLIENT_AUTHZ": {
+        "_standard": "RFC5878",
+        "_code_in_hex": "0x0007",
+        "code": 7
+    },
+    "SERVER_AUTHZ": {
+        "_standard": "RFC5878",
+        "_code_in_hex": "0x0008",
+        "code": 8
+    },
+    "CERT_TYPE": {
+        "_standard": "RFC6091",
+        "_code_in_hex": "0x0009",
+        "code": 9
+    },
+    "SUPPORTED_GROUPS": {
+        "_standard": "RFC-IETF-TLS-RFC",
+        "_code_in_hex": "0x000a",
+        "code": 10
+    },
+    "EC_POINT_FORMATS": {
+        "_standard": "RFC-IETF-TLS-RFC",
+        "_code_in_hex": "0x000b",
+        "code": 11
+    },
+    "SRP": {
+        "_standard": "RFC5054",
+        "_code_in_hex": "0x000c",
+        "code": 12
+    },
+    "SIGNATURE_ALGORITHMS": {
+        "_standard": "RFC5246",
+        "_code_in_hex": "0x000d",
+        "code": 13
+    },
+    "USE_SRTP": {
+        "_standard": "RFC5764",
+        "_code_in_hex": "0x000e",
+        "code": 14
+    },
+    "HEARTBEAT": {
+        "_standard": "RFC6520",
+        "_code_in_hex": "0x000f",
+        "code": 15
+    },
+    "APPLICATION_LAYER_PROTOCOL_NEGOTIATION": {
+        "_standard": "RFC7301",
+        "_code_in_hex": "0x0010",
+        "code": 16
+    },
+    "STATUS_REQUEST_V2": {
+        "_standard": "RFC6961",
+        "_code_in_hex": "0x0011",
+        "code": 17
+    },
+    "SIGNED_CERTIFICATE_TIMESTAMP": {
+        "_standard": "RFC6962",
+        "_code_in_hex": "0x0012",
+        "code": 18
+    },
+    "CLIENT_CERTIFICATE_TYPE": {
+        "_standard": "RFC7250",
+        "_code_in_hex": "0x0013",
+        "code": 19
+    },
+    "SERVER_CERTIFICATE_TYPE": {
+        "_standard": "RFC7250",
+        "_code_in_hex": "0x0014",
+        "code": 20
+    },
+    "PADDING": {
+        "_standard": "RFC7685",
+        "_code_in_hex": "0x0015",
+        "code": 21
+    },
+    "ENCRYPT_THEN_MAC": {
+        "_standard": "RFC7366",
+        "_code_in_hex": "0x0016",
+        "code": 22
+    },
+    "EXTENDED_MASTER_SECRET": {
+        "_standard": "RFC7627",
+        "_code_in_hex": "0x0017",
+        "code": 23
+    },
+    "TOKEN_BINDING": {
+        "_standard": "DRAFT-IETF-TOKBIND-NEGOTIATION",
+        "_code_in_hex": "0x0018",
+        "code": 24
+    },
+    "CACHED_INFO": {
+        "_standard": "RFC7924",
+        "_code_in_hex": "0x0019",
+        "code": 25
+    },
+    "COMPRESS_CERTIFICATE": {
+        "_standard": "RFC-ietf-tls-certificate-compression-09",
+        "_code_in_hex": "0x001b",
+        "code": 27
+    },
+    "RECORD_SIZE_LIMIT": {
+        "_standard": "RFC8849",
+        "_code_in_hex": "0x001c",
+        "code": 28
+    },
+    "PWD_PROTECT": {
+        "_standard": "RFC-HARKINS-TLS-DRAGONFLY-03",
+        "_code_in_hex": "0x001d",
+        "code": 29
+    },
+    "PWD_CLEAR": {
+        "_standard": "RFC-HARKINS-TLS-DRAGONFLY-03",
+        "_code_in_hex": "0x001e",
+        "code": 30
+    },
+    "PASSWORD_SALT": {
+        "_standard": "RFC-HARKINS-TLS-DRAGONFLY-03",
+        "_code_in_hex": "0x001f",
+        "code": 31
+    },
+    "TICKET_PINNING": {
+        "_standard": "RFC8672",
+        "_code_in_hex": "0x0020",
+        "code": 32
+    },
+    "TLS_CERT_WITH_EXTERN_PSK": {
+        "_standard": "RFC-IETF-TLS-TLS13-CERT-WITH-EXTERN-PSK-07",
+        "_code_in_hex": "0x0021",
+        "code": 33
+    },
+    "DELEGATED_CREDENTIALS": {
+        "_standard": "RFC-IETF-TLS-SUBCERTS-15",
+        "_code_in_hex": "0x0022",
+        "code": 34
+    },
+    "SESSION_TICKET": {
+        "_standard": "RFC4507",
+        "_code_in_hex": "0x0023",
+        "code": 35
+    },
+    "KEY_SHARE_RESERVED": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x0028",
+        "code": 40
+    },
+    "PRE_SHARED_KEY": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x0029",
+        "code": 41
+    },
+    "EARLY_DATA": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x002a",
+        "code": 42
+    },
+    "SUPPORTED_VERSIONS": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x002b",
+        "code": 43
+    },
+    "COOKIE": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x002c",
+        "code": 44
+    },
+    "PSK_KEY_EXCHANGE_MODES": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x002d",
+        "code": 45
+    },
+    "CERTIFICATE_AUTHORITIES": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x002f",
+        "code": 47
+    },
+    "OID_FILTERS": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x0030",
+        "code": 48
+    },
+    "POST_HANDSHAKE_AUTH": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-20",
+        "_code_in_hex": "0x0031",
+        "code": 49
+    },
+    "SIGNATURE_ALGORITHMS_CERT": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-23",
+        "_code_in_hex": "0x0032",
+        "code": 50
+    },
+    "KEY_SHARE": {
+        "_standard": "DRAFT-IETF-TLS-TLS13-23",
+        "_code_in_hex": "0x0033",
+        "code": 51
+    },
+    "TRANSPARENCY_INFO": {
+        "_standard": "DRAFT-IETF-TRANS-RFC6962-BIS",
+        "_code_in_hex": "0x0034",
+        "code": 52
+    },
+    "CONNECTION_ID": {
+        "_standard": "DRAFT-IETF-TLS-DTLS-CONNECTION-ID",
+        "_code_in_hex": "0x0035",
+        "code": 53
+    },
+    "EXTERNAL_ID_HASH": {
+        "_standard": "RFC-IETF-MMUSIC-SDP-UKS-07",
+        "_code_in_hex": "0x0037",
+        "code": 55
+    },
+    "EXTERNAL_SESSION_ID": {
+        "_standard": "RFC-IETF-MMUSIC-SDP-UKS-07",
+        "_code_in_hex": "0x0038",
+        "code": 56
+    },
+    "NEXT_PROTOCOL_NEGOTIATION": {
+        "_standard": "DRAFT-AGL-TLS-NEXTPROTONEG-04",
+        "_code_in_hex": "0x3374",
+        "code": 13172
+    },
+    "APPLICATION_LAYER_PROTOCOL_SETTINGS": {
+        "_standard": "DRAFT-VVV-TLS-ALPS",
+        "_code_in_hex": "0x4469",
+        "code": 17513
+    },
+    "CHANNEL_ID": {
+        "_standard": "DRAFT-BALFANZ-TLS-OBC-01",
+        "_code_in_hex": "0x7550",
+        "code": 30032
+    },
+    "ENCRYPTED_CLIENT_HELLO": {
+        "_standard": "DRAFT-IETF-TLS-ESNI",
+        "_code_in_hex": "0xfe0d",
+        "code": 65037
+    },
+    "RENEGOTIATION_INFO": {
+        "_standard": "DRAFT-AGL-TLS-NEXTPROTONEG-03",
+        "_code_in_hex": "0xff01",
+        "code": 65281
+    },
+    "SHORT_RECORD_HEADER": {
+        "_standard": "DRAFT-FOSSATI-TLS-EXT-HEADER",
+        "_code_in_hex": "0xff03",
+        "code": 65283
+    }
+}

cryptodatahub/tls/grease-one-byte.json

@@ -0,0 +1,34 @@
+{
+    "GREASE_0B": {
+        "_code_in_hex": "0x0b",
+        "code": 11
+    },
+    "GREASE_2A": {
+        "_code_in_hex": "0x2a",
+        "code": 42
+    },
+    "GREASE_49": {
+        "_code_in_hex": "0x49",
+        "code": 73
+    },
+    "GREASE_68": {
+        "_code_in_hex": "0x68",
+        "code": 104
+    },
+    "GREASE_87": {
+        "_code_in_hex": "0x87",
+        "code": 135
+    },
+    "GREASE_A6": {
+        "_code_in_hex": "0xa6",
+        "code": 166
+    },
+    "GREASE_C5": {
+        "_code_in_hex": "0xc5",
+        "code": 197
+    },
+    "GREASE_E4": {
+        "_code_in_hex": "0xe4",
+        "code": 228
+    }
+}

cryptodatahub/tls/grease-two-byte.json

@@ -0,0 +1,66 @@
+{
+    "GREASE_0A0A": {
+        "_code_in_hex": "0x0a0a",
+        "code": 2570
+    },
+    "GREASE_1A1A": {
+        "_code_in_hex": "0x1a1a",
+        "code": 6682
+    },
+    "GREASE_2A2A": {
+        "_code_in_hex": "0x2a2a",
+        "code": 10794
+    },
+    "GREASE_3A3A": {
+        "_code_in_hex": "0x3a3a",
+        "code": 14906
+    },
+    "GREASE_4A4A": {
+        "_code_in_hex": "0x4a4a",
+        "code": 19018
+    },
+    "GREASE_5A5A": {
+        "_code_in_hex": "0x5a5a",
+        "code": 23130
+    },
+    "GREASE_6A6A": {
+        "_code_in_hex": "0x6a6a",
+        "code": 27242
+    },
+    "GREASE_7A7A": {
+        "_code_in_hex": "0x7a7a",
+        "code": 31354
+    },
+    "GREASE_8A8A": {
+        "_code_in_hex": "0x8a8a",
+        "code": 35466
+    },
+    "GREASE_9A9A": {
+        "_code_in_hex": "0x9a9a",
+        "code": 39578
+    },
+    "GREASE_AAAA": {
+        "_code_in_hex": "0xaaaa",
+        "code": 43690
+    },
+    "GREASE_BABA": {
+        "_code_in_hex": "0xbaba",
+        "code": 47802
+    },
+    "GREASE_CACA": {
+        "_code_in_hex": "0xcaca",
+        "code": 51914
+    },
+    "GREASE_DADA": {
+        "_code_in_hex": "0xdada",
+        "code": 56026
+    },
+    "GREASE_EAEA": {
+        "_code_in_hex": "0xeaea",
+        "code": 60138
+    },
+    "GREASE_FAFA": {
+        "_code_in_hex": "0xfafa",
+        "code": 64250
+    }
+}