Home Explore Help
Sign In
emmanouil.vasilomano
/
PREPARE
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 8d64a3f608
Branches Tags
PREPARE
/
prepare
/
pypacker
/
layer4
/
ssl_ciphersuites.py

ssl_ciphersuites.py 1.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869 
  1. # Copyright 2012 Google Inc. All rights reserved.
    2. 

  2. 

  3. """
    4. 

  4. Nicely formatted cipher suite definitions for TLS
    5. 

  5. 

  6. A list of cipher suites in the form of CipherSuite objects.
    7. 

  7. These are supposed to be immutable; don't mess with them.
    8. 

  8. """
    9. 

  9. 

  10. 

  11. class CipherSuite(object):
    12. 

  12. 	"""
    13. 

  13. 	Encapsulates a cipher suite.
    14. 

  14. 

  15. 	Members/args:
    16. 

  16. 	* code: two-byte ID code, as int
    17. 

  17. 	* name: as in 'TLS_RSA_WITH_RC4_40_MD5'
    18. 

  18. 	* kx: key exchange algorithm, string
    19. 

  19. 	* auth: authentication algorithm, string
    20. 

  20. 	* encoding: encoding algorithm
    21. 

  21. 	* mac: message authentication code algorithm
    22. 

  22. 	"""
    23. 

  23. 

  24. 	def __init__(self, code, name, kx, auth, encoding, mac):
    25. 

  25. 		self.code = code
    26. 

  26. 		self.name = name
    27. 

  27. 		self.kx = kx
    28. 

  28. 		self.auth = auth
    29. 

  29. 		self.encoding = encoding
    30. 

  30. 		self.mac = mac
    31. 

  31. 

  32. 	def __repr__(self):
    33. 

  33. 		return 'CipherSuite(%s)' % self.name
    34. 

  34. 

  35. 	MAC_SIZES = {
    36. 

  36. 		'MD5': 16,
    37. 

  37. 		'SHA': 20,
    38. 

  38. 		'SHA256': 32,		# I guess
    39. 

  39. 	}
    40. 

  40. 

  41. 	BLOCK_SIZES = {
    42. 

  42. 		'AES_256_CBC': 16,
    43. 

  43. 	}
    44. 

  44. 

  45. 	@property
    46. 

  46. 	def mac_size(self):
    47. 

  47. 		"""In bytes. Default to 0."""
    48. 

  48. 		return self.MAC_SIZES.get(self.mac, 0)
    49. 

  49. 

  50. 	@property
    51. 

  51. 	def block_size(self):
    52. 

  52. 		"""In bytes. Default to 1."""
    53. 

  53. 		return self.BLOCK_SIZES.get(self.encoding, 1)
    54. 

  54. 

  55. 

  56. # master list of CipherSuite Objects
    57. 

  57. CIPHERSUITES = [
    58. 

  58. 	# not a real cipher suite, can be ignored, see RFC5746
    59. 

  59. 	CipherSuite(0xff, 'TLS_EMPTY_RENEGOTIATION_INFO', 'NULL', 'NULL', 'NULL', 'NULL'),
    60. 

  60. 	CipherSuite(0x00, 'TLS_NULL_WITH_NULL_NULL', 'NULL', 'NULL', 'NULL', 'NULL'),
    61. 

  61. 	CipherSuite(0x01, 'TLS_RSA_WITH_NULL_MD5', 'RSA', 'RSA', 'NULL', 'MD5'),
    62. 

  62. 	CipherSuite(0x02, 'TLS_RSA_WITH_NULL_SHA', 'RSA', 'RSA', 'NULL', 'SHA'),
    63. 

  63. 	CipherSuite(0x0039, 'TLS_DHE_RSA_WITH_AES_256_CBC_SHA', 'DHE', 'RSA', 'AES_256_CBC', 'SHA'),		# not sure I got the kx/auth thing right.
    64. 

  64. 	CipherSuite(0xffff, 'UNKNOWN_CIPHER', '', '', '', '')
    65. 

  65. ]
    66. 

  66. 

  67. # BY_CODE = decoder_dict((cipher.code, cipher) for cipher in CIPHERSUITES)
    68. 

  68. # BY_NAME = decoder_dict((suite.name, suite) for suite in CIPHERSUITES)
    69. 

  69. # NULL_SUITE = BY_CODE[0x00]
    70.