MAP;\n private final byte[] byteValue;\n\n public byte[] getByteValue() {\n return this.byteValue;\n }\n\n static {\n MAP = new HashMap<>();\n for (EsniDnsKeyRecordVersion version : values()) {\n byte[] versionBytes = version.getByteValue();\n if (versionBytes != null) {\n BigInteger hashMapKey = new BigInteger(versionBytes);\n MAP.put(hashMapKey, version);\n }\n }\n }\n\n public static EsniDnsKeyRecordVersion getEnumByByte(byte[] versionBytes) {\n if (versionBytes == null) {\n return EsniDnsKeyRecordVersion.NULL;\n } else {\n BigInteger hashMapKey = new BigInteger(versionBytes);\n return MAP.get(hashMapKey);\n }\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/EsniVersion.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\npublic enum EsniVersion {\n DRAFT_0(EsniDnsKeyRecordVersion.NULL),\n DRAFT_1(EsniDnsKeyRecordVersion.FF01),\n DRAFT_2(EsniDnsKeyRecordVersion.FF01),\n DRAFT_3(EsniDnsKeyRecordVersion.FF02),\n DRAFT_4(EsniDnsKeyRecordVersion.FF03),\n DRAFT_5(EsniDnsKeyRecordVersion.FF03);\n\n EsniVersion(EsniDnsKeyRecordVersion dnsKeyRecordVersion) {\n this.dnsKeyRecordVersion = dnsKeyRecordVersion;\n }\n\n EsniDnsKeyRecordVersion dnsKeyRecordVersion;\n\n public EsniDnsKeyRecordVersion getDnsKeyRecordVersion() {\n return this.dnsKeyRecordVersion;\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/ExtensionByteLength.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\npublic class ExtensionByteLength {\n\n /** extensions byte length */\n public static final int EXTENSIONS_LENGTH = 2;\n\n /** extension type */\n public static final int TYPE = 2;\n\n /** EC point formats length field of the ec point format extension message */\n public static final int EC_POINT_FORMATS = 1;\n\n /** Supported Elliptic Curves length field of the elliptic curve extension message */\n public static final int SUPPORTED_GROUPS = 2;\n\n /** Heartbeat mode length in the heartbeat extension message */\n public static final int HEARTBEAT_MODE = 1;\n\n /** MaxFragment length field in the MaxFragmentExtension message */\n public static final int MAX_FRAGMENT = 1;\n\n /** ServerNameType length in the ServerNameIndicationExtension */\n public static final int SERVER_NAME_TYPE = 1;\n\n /** ServerName length in the ServerNameIndicationExtension */\n public static final int SERVER_NAME = 2;\n\n /** ServerNameListLength in the ServerNameIndicationExtension */\n public static final int SERVER_NAME_LIST = 2;\n\n /** ExtendedRandomLength in the ExtendedRandomExtension */\n public static final int EXTENDED_RANDOM_LENGTH = 2;\n\n /** KeyShareGroup length in the KeyShareExtension */\n public static final int KEY_SHARE_GROUP = 2;\n\n /** KeyShare length in the KeyShareExtension */\n public static final int KEY_SHARE_LENGTH = 2;\n\n /** KeyShareListLength in the KeyShareExtension */\n public static final int KEY_SHARE_LIST_LENGTH = 2;\n\n /** KeyExchangeModes length in the PSKKeyExchangeModesExtension */\n public static final int PSK_KEY_EXCHANGE_MODES_LENGTH = 1;\n\n /** PSKIdentity length in the PreSharedKeyExtension */\n public static final int PSK_IDENTITY_LENGTH = 2;\n\n /** PSKList length in the PreSharedKeyExtension */\n public static final int PSK_IDENTITY_LIST_LENGTH = 2;\n\n /** PSKBinder length in the PreSharedKeyExtension */\n public static final int PSK_BINDER_LENGTH = 1;\n\n /** PSKBinderList length in the PreSharedKeyExtension */\n public static final int PSK_BINDER_LIST_LENGTH = 2;\n\n /** SelectedIdentity length in the PreSharedKeyExtension */\n public static final int PSK_SELECTED_IDENTITY_LENGTH = 2;\n\n /** TicketAge length in the PreSharedKeyExtension */\n public static final int TICKET_AGE_LENGTH = 4;\n\n /** Based on the suggested length of the encrypted session ticket */\n public static final int ENCRYPTED_SESSION_TICKET_STATE_LENGTH = 2;\n\n /** MaxEarlyDataSize length in the EarlyDataExtension */\n public static final int MAX_EARLY_DATA_SIZE_LENGTH = 4;\n\n /**\n * Length of the Signature and HashAlgorithm Length field of the SignatureAndHashAlgorithms\n * Extension\n */\n public static final int SIGNATURE_AND_HASH_ALGORITHMS_LENGTH = 2;\n\n /** Supported Protocol Versions length field of the SupportedVersionsExtension message */\n public static final int SUPPORTED_PROTOCOL_VERSIONS_LENGTH = 1;\n\n /** Length of the Padding Length field of the Padding Extension */\n public static final int PADDING_LENGTH = 2;\n\n public static final int SIGNATURE_AND_HASH_ALGORITHMS = 2;\n\n /** Length of the version field as used by the token binding extension. */\n public static final int TOKENBINDING_VERSION = 2;\n\n /** Length of the token binding extension key parameter length field */\n public static final int TOKENBINDING_KEYPARAMETER_LENGTH = 1;\n\n /** Length of the certificate status request responder id list length field */\n public static final int CERTIFICATE_STATUS_REQUEST_RESPONDER_ID_LIST_LENGTH = 2;\n\n /** Length of the certificate status request \"request extension\" length field */\n public static final int CERTIFICATE_STATUS_REQUEST_REQUEST_EXTENSION_LENGTH = 2;\n\n /** Length of the certificate status request status type field */\n public static final int CERTIFICATE_STATUS_REQUEST_STATUS_TYPE = 1;\n\n /** Length of the application layer protocol extension length field */\n public static final int ALPN_EXTENSION_LENGTH = 2;\n\n public static final int ALPN_ENTRY_LENGTH = 1;\n\n /** Length of the Quic Transport Parameters Extension Length Field */\n public static final int QUIC_EXTENSION_LENTGH = 2;\n\n public static final int QUIC_PARAMETER_ENTRY_LENGTH = 1;\n\n /** Length of the SRP extension identifier length field */\n public static final int SRP_IDENTIFIER_LENGTH = 1;\n\n /** Length of the SRTP extension master key identifier length field */\n public static final int SRTP_MASTER_KEY_IDENTIFIER_LENGTH = 1;\n\n /** Length of the SRTP extension protection profiles length field length */\n public static final int SRTP_PROTECTION_PROFILES_LENGTH = 2;\n\n /** Length of the user mapping extension user mapping hint field */\n public static final int USER_MAPPING_MAPPINGTYPE = 1;\n\n /** Length of the certificate_type certificate_types length field */\n public static final int CERTIFICATE_TYPE_TYPE_LENGTH = 1;\n\n /** Length of the client authz extension length field */\n public static final int CLIENT_AUTHZ_FORMAT_LIST_LENGTH = 1;\n\n /** Length of the server authz extension length field */\n public static final int SERVER_AUTHZ_FORMAT_LIST_LENGTH = 1;\n\n /** Length of the cached information extension length field */\n public static final int CACHED_INFO_LENGTH = 2;\n\n /** Length of the CachedInfoType */\n public static final int CACHED_INFO_TYPE = 1;\n\n /** Length of the Cached Info extension hash value length */\n public static final int CACHED_INFO_HASH_LENGTH = 1;\n\n /** Length of the trusted ca indication authority type length */\n public static final int TRUSTED_AUTHORITY_TYPE = 1;\n\n /** Length of the trusted ca indication sha1 hash length */\n public static final int TRUSTED_AUTHORITY_HASH = 20;\n\n /** Length of the trusted ca indication distinguished name length field */\n public static final int TRUSTED_AUTHORITY_DISTINGUISHED_NAME_LENGTH = 2;\n\n /** Length of the trusted ca indication trusted authority list */\n public static final int TRUSTED_AUTHORITY_LIST_LENGTH = 2;\n\n /** Length of the status request v2 responder id length */\n public static final int CERTIFICATE_STATUS_REQUEST_V2_RESPONDER_ID = 2;\n\n /** Length of the status request v2 request extension length */\n public static final int CERTIFICATE_STATUS_REQUEST_V2_REQUEST_EXTENSION = 2;\n\n /** Length of the status request v2 request length */\n public static final int CERTIFICATE_STATUS_REQUEST_V2_REQUEST_LENGTH = 2;\n\n /** Length of the status request v2 list length */\n public static final int CERTIFICATE_STATUS_REQUEST_V2_LIST = 2;\n\n public static final int RENEGOTIATION_INFO = 1;\n\n /** PWD_NAME length field of the pwd_clear and pwd_protect extension messages */\n public static final int PWD_NAME = 1;\n\n public static final int PWD_SCALAR = 1;\n\n /**\n * PASSWORD_SALT length field of the password_salt extension message\n *\n * Note that the field has a different length than the salt field in the ServerKeyExchange\n * for some reason\n */\n public static final int PASSWORD_SALT = 2;\n\n /** Fields in the DNS Record of the EncryptedServerNameIndicationExtension */\n public static final int ESNI_RECORD_VERSION = 2;\n\n public static final int ESNI_RECORD_CHECKSUM = 4;\n\n public static final int ESNI_RECORD_PUBLIC_NAME = 2;\n\n public static final int ESNI_RECORD_PADDED_LENGTH = 2;\n\n public static final int ESNI_RECORD_NOT_BEFORE = 8;\n\n public static final int ESNI_RECORD_NOT_AFTER = 8;\n\n public static final int ESNI_RECORD_EXTENSIONS = 2;\n\n /** Length of encryptedSni in the EncryptedServerNameIndicationExtension */\n public static final int ENCRYPTED_SNI_LENGTH = 2;\n\n /** Nonce in EncryptedServerNameIndicationExtension */\n public static final int NONCE = 16;\n\n /** PaddedLength in the ClientEsniInner of the EncryptedServerNameIndicationExtension */\n public static final int PADDED_LENGTH = 2;\n\n /** recordDigestLength in EncryptedServerNameIndicationExtension */\n public static final int RECORD_DIGEST_LENGTH = 2;\n\n /** Fields in the ECH Config of the EncryptedClientHelloExtension */\n public static final int ECH_CONFIG_LIST_LENGTH = 2;\n\n public static final int ECH_CONFIG_LENGTH = 2;\n\n public static final int ECH_CONFIG_PUBLIC_NAME = 1;\n\n public static final int ECH_CONFIG_PUBLIC_NAME_LONG = 2;\n\n public static final int ECH_CONFIG_PUBLIC_KEY = 2;\n\n public static final int ECH_CONFIG_MAX_NAME_LENGTH = 1;\n\n public static final int ECH_CONFIG_ID = 1;\n\n public static final int ECH_CONFIG_KEM_ID = 2;\n\n public static final int ECH_CONFIG_CIPHERSUITES = 2;\n\n public static final int ECH_CONFIG_KDF_ID = 2;\n\n public static final int ECH_CONFIG_AEAD_ID = 2;\n\n public static final int ECH_CLIENT_HELLO_TYPE = 1;\n\n public static final int ECH_ENC_LENGTH = 2;\n\n public static final int ECH_PAYLOAD_LENGTH = 2;\n\n public static final int ECH_ACCEPT_CONFIRMATION_LENGTH = 8;\n\n /** cookieLength in the CookieExtension */\n public static final int COOKIE_LENGTH = 2;\n\n /** RecordSizeLimit length in the RecordSizeLimitExtension */\n public static final int RECORD_SIZE_LIMIT_LENGTH = 2;\n\n /** connectionIdLength in ConnectionIdExtension */\n public static final int CONNECTION_ID_LENGTH = 1;\n\n /** SignatureAlgorithmsCert Extension Fields */\n public static final int SIGNATURE_ALGORITHMS_CERT_LENGTH = 2;\n\n public static final int SIGNATURE_ALGORITHMS_CERT = 2;\n\n private ExtensionByteLength() {}\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/ExtensionType.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport java.util.HashMap;\nimport java.util.LinkedList;\nimport java.util.List;\nimport java.util.Map;\n\npublic enum ExtensionType {\n SERVER_NAME_INDICATION(new byte[] {(byte) 0, (byte) 0}),\n MAX_FRAGMENT_LENGTH(new byte[] {(byte) 0, (byte) 1}),\n CLIENT_CERTIFICATE_URL(new byte[] {(byte) 0, (byte) 2}),\n TRUSTED_CA_KEYS(new byte[] {(byte) 0, (byte) 3}),\n TRUNCATED_HMAC(new byte[] {(byte) 0, (byte) 4}),\n STATUS_REQUEST(new byte[] {(byte) 0, (byte) 5}),\n USER_MAPPING(new byte[] {(byte) 0, (byte) 6}),\n CLIENT_AUTHZ(new byte[] {(byte) 0, (byte) 7}),\n SERVER_AUTHZ(new byte[] {(byte) 0, (byte) 8}),\n CERT_TYPE(new byte[] {(byte) 0, (byte) 9}),\n ELLIPTIC_CURVES(new byte[] {(byte) 0, (byte) 10}),\n EC_POINT_FORMATS(new byte[] {(byte) 0, (byte) 11}),\n SRP(new byte[] {(byte) 0, (byte) 12}),\n SIGNATURE_AND_HASH_ALGORITHMS(new byte[] {(byte) 0, (byte) 13}),\n USE_SRTP(new byte[] {(byte) 0, (byte) 14}),\n HEARTBEAT(new byte[] {(byte) 0, (byte) 15}),\n ALPN(new byte[] {(byte) 0, (byte) 16}),\n STATUS_REQUEST_V2(new byte[] {(byte) 0, (byte) 17}),\n SIGNED_CERTIFICATE_TIMESTAMP(new byte[] {(byte) 0, (byte) 18}),\n CLIENT_CERTIFICATE_TYPE(new byte[] {(byte) 0, (byte) 19}),\n SERVER_CERTIFICATE_TYPE(new byte[] {(byte) 0, (byte) 20}),\n PADDING(new byte[] {(byte) 0, (byte) 21}),\n ENCRYPT_THEN_MAC(new byte[] {(byte) 0, (byte) 22}),\n EXTENDED_MASTER_SECRET(new byte[] {(byte) 0, (byte) 23}),\n TOKEN_BINDING(new byte[] {(byte) 0, (byte) 24}),\n CACHED_INFO(new byte[] {(byte) 0, (byte) 25}),\n RECORD_SIZE_LIMIT(new byte[] {(byte) 0, (byte) 28}),\n PWD_PROTECT(new byte[] {(byte) 0, (byte) 29}),\n PWD_CLEAR(new byte[] {(byte) 0, (byte) 30}),\n PASSWORD_SALT(new byte[] {(byte) 0, (byte) 31}),\n SESSION_TICKET(new byte[] {(byte) 0, (byte) 35}),\n EXTENDED_RANDOM(new byte[] {(byte) 0, (byte) 40}), // Shares same IANA ID\n // as old keyshare\n // extension.\n PRE_SHARED_KEY(new byte[] {(byte) 0, (byte) 41}),\n EARLY_DATA(new byte[] {(byte) 0, (byte) 42}),\n SUPPORTED_VERSIONS(new byte[] {(byte) 0, (byte) 43}),\n COOKIE(new byte[] {0x00, (byte) 44}),\n PSK_KEY_EXCHANGE_MODES(new byte[] {(byte) 0, (byte) 45}),\n CERTIFICATE_AUTHORITIES(new byte[] {(byte) 0, (byte) 47}),\n OID_FILTERS(new byte[] {(byte) 0, (byte) 48}),\n POST_HANDSHAKE_AUTH(new byte[] {(byte) 0, (byte) 49}),\n SIGNATURE_ALGORITHMS_CERT(new byte[] {(byte) 0, (byte) 50}),\n KEY_SHARE(new byte[] {(byte) 0, (byte) 51}),\n RENEGOTIATION_INFO(new byte[] {(byte) 0xFF, (byte) 0x01}),\n ENCRYPTED_SERVER_NAME_INDICATION(new byte[] {(byte) 0xFF, (byte) 0xCE}),\n QUIC_TRANSPORT_PARAMETERS(new byte[] {(byte) 0x00, (byte) 0x39}),\n CONNECTION_ID(new byte[] {(byte) 0, (byte) 54}),\n ENCRYPTED_CLIENT_HELLO_DRAFT_07(new byte[] {(byte) 0xFF, (byte) 0x02}),\n ENCRYPTED_CLIENT_HELLO_DRAFT_08(new byte[] {(byte) 0xFF, (byte) 0x08}),\n ENCRYPTED_CLIENT_HELLO_DRAFT_09(new byte[] {(byte) 0xFF, (byte) 0x09}),\n ENCRYPTED_CLIENT_HELLO_DRAFT_10(new byte[] {(byte) 0xFF, (byte) 0x0a}),\n ENCRYPTED_CLIENT_HELLO_DRAFT_11(new byte[] {(byte) 0xFF, (byte) 0x0b}),\n ENCRYPTED_CLIENT_HELLO_DRAFT_12(new byte[] {(byte) 0xFF, (byte) 0x0c}),\n ENCRYPTED_CLIENT_HELLO(new byte[] {(byte) 0xFE, (byte) 0x0D}),\n ENCRYPTED_CLIENT_HELLO_ENCRYPTED_EXTENSIONS(new byte[] {(byte) 0xFE, (byte) 0x0D}),\n\n // Debug extension\n DEBUG(new byte[] {(byte) 0xFB, (byte) 0xFB}),\n\n // GREASE constants\n GREASE_00(new byte[] {(byte) 0x0A, (byte) 0x0A}),\n GREASE_01(new byte[] {(byte) 0x1A, (byte) 0x1A}),\n GREASE_02(new byte[] {(byte) 0x2A, (byte) 0x2A}),\n GREASE_03(new byte[] {(byte) 0x3A, (byte) 0x3A}),\n GREASE_04(new byte[] {(byte) 0x4A, (byte) 0x4A}),\n GREASE_05(new byte[] {(byte) 0x5A, (byte) 0x5A}),\n GREASE_06(new byte[] {(byte) 0x6A, (byte) 0x6A}),\n GREASE_07(new byte[] {(byte) 0x7A, (byte) 0x7A}),\n GREASE_08(new byte[] {(byte) 0x8A, (byte) 0x8A}),\n GREASE_09(new byte[] {(byte) 0x9A, (byte) 0x9A}),\n GREASE_10(new byte[] {(byte) 0xAA, (byte) 0xAA}),\n GREASE_11(new byte[] {(byte) 0xBA, (byte) 0xBA}),\n GREASE_12(new byte[] {(byte) 0xCA, (byte) 0xCA}),\n GREASE_13(new byte[] {(byte) 0xDA, (byte) 0xDA}),\n GREASE_14(new byte[] {(byte) 0xEA, (byte) 0xEA}),\n GREASE_15(new byte[] {(byte) 0xFA, (byte) 0xFA}),\n\n UNKNOWN(new byte[0]);\n\n private byte[] value;\n\n private static final Map MAP;\n\n ExtensionType(byte[] value) {\n this.value = value;\n }\n\n static {\n MAP = new HashMap<>();\n for (ExtensionType c : values()) {\n MAP.put(valueToInt(c.value), c);\n }\n }\n\n private static int valueToInt(byte[] value) {\n if (value.length == 2) {\n return (value[0] & 0xff) << Bits.IN_A_BYTE | (value[1] & 0xff);\n } else {\n return -1;\n }\n }\n\n public static ExtensionType getExtensionType(byte[] value) {\n ExtensionType type = MAP.get(valueToInt(value));\n if (type == null) {\n return UNKNOWN;\n }\n return type;\n }\n\n public byte[] getValue() {\n return value;\n }\n\n public byte getMajor() {\n return value[0];\n }\n\n public byte getMinor() {\n return value[1];\n }\n\n public boolean isGrease() {\n return this.name().contains(\"GREASE\");\n }\n\n public static List getSendable() {\n List list = new LinkedList<>();\n list.add(ALPN);\n list.add(CACHED_INFO);\n list.add(CERT_TYPE);\n list.add(CLIENT_AUTHZ);\n list.add(CLIENT_CERTIFICATE_TYPE);\n list.add(CLIENT_CERTIFICATE_URL);\n list.add(EARLY_DATA);\n list.add(EC_POINT_FORMATS);\n list.add(ELLIPTIC_CURVES);\n list.add(ENCRYPT_THEN_MAC);\n list.add(EXTENDED_MASTER_SECRET);\n list.add(HEARTBEAT);\n list.add(KEY_SHARE);\n list.add(EXTENDED_RANDOM);\n list.add(MAX_FRAGMENT_LENGTH);\n list.add(PADDING);\n list.add(PRE_SHARED_KEY);\n list.add(PSK_KEY_EXCHANGE_MODES);\n list.add(RENEGOTIATION_INFO);\n list.add(SERVER_AUTHZ);\n list.add(SERVER_CERTIFICATE_TYPE);\n list.add(SERVER_NAME_INDICATION);\n list.add(SESSION_TICKET);\n list.add(SIGNATURE_AND_HASH_ALGORITHMS);\n list.add(SIGNATURE_ALGORITHMS_CERT);\n list.add(SIGNED_CERTIFICATE_TIMESTAMP);\n list.add(SRP);\n list.add(STATUS_REQUEST);\n list.add(STATUS_REQUEST_V2);\n list.add(SUPPORTED_VERSIONS);\n list.add(TOKEN_BINDING);\n list.add(TRUNCATED_HMAC);\n list.add(TRUSTED_CA_KEYS);\n list.add(USE_SRTP);\n list.add(COOKIE);\n list.add(RECORD_SIZE_LIMIT);\n list.add(CONNECTION_ID);\n list.add(QUIC_TRANSPORT_PARAMETERS);\n list.add(ENCRYPTED_CLIENT_HELLO);\n\n return list;\n }\n\n public static List getReceivable() {\n List list = new LinkedList<>();\n list.add(ALPN);\n list.add(CACHED_INFO);\n list.add(CERT_TYPE);\n list.add(CLIENT_AUTHZ);\n list.add(CLIENT_CERTIFICATE_TYPE);\n list.add(CLIENT_CERTIFICATE_URL);\n list.add(EARLY_DATA);\n list.add(EC_POINT_FORMATS);\n list.add(ELLIPTIC_CURVES);\n list.add(ENCRYPT_THEN_MAC);\n list.add(EXTENDED_MASTER_SECRET);\n list.add(HEARTBEAT);\n list.add(KEY_SHARE);\n list.add(EXTENDED_RANDOM);\n list.add(MAX_FRAGMENT_LENGTH);\n list.add(PADDING);\n list.add(PRE_SHARED_KEY);\n list.add(PSK_KEY_EXCHANGE_MODES);\n list.add(RENEGOTIATION_INFO);\n list.add(SERVER_AUTHZ);\n list.add(SERVER_CERTIFICATE_TYPE);\n list.add(SERVER_NAME_INDICATION);\n list.add(SESSION_TICKET);\n list.add(SIGNATURE_AND_HASH_ALGORITHMS);\n list.add(SIGNATURE_ALGORITHMS_CERT);\n list.add(SIGNED_CERTIFICATE_TIMESTAMP);\n list.add(SRP);\n list.add(STATUS_REQUEST);\n list.add(STATUS_REQUEST_V2);\n list.add(SUPPORTED_VERSIONS);\n list.add(TOKEN_BINDING);\n list.add(TRUNCATED_HMAC);\n list.add(TRUSTED_CA_KEYS);\n list.add(USE_SRTP);\n list.add(COOKIE);\n list.add(RECORD_SIZE_LIMIT);\n list.add(CONNECTION_ID);\n list.add(QUIC_TRANSPORT_PARAMETERS);\n list.add(ENCRYPTED_CLIENT_HELLO);\n list.add(ENCRYPTED_CLIENT_HELLO_ENCRYPTED_EXTENSIONS);\n\n return list;\n }\n\n public static List getImplemented() {\n List list = new LinkedList<>();\n list.add(EARLY_DATA);\n list.add(EC_POINT_FORMATS);\n list.add(ELLIPTIC_CURVES);\n list.add(EXTENDED_MASTER_SECRET);\n list.add(KEY_SHARE);\n list.add(MAX_FRAGMENT_LENGTH);\n list.add(PADDING);\n list.add(PRE_SHARED_KEY);\n list.add(PSK_KEY_EXCHANGE_MODES);\n list.add(SERVER_NAME_INDICATION);\n list.add(SIGNATURE_AND_HASH_ALGORITHMS);\n list.add(SIGNATURE_ALGORITHMS_CERT);\n list.add(SUPPORTED_VERSIONS);\n list.add(TOKEN_BINDING);\n list.add(RENEGOTIATION_INFO);\n list.add(HEARTBEAT);\n list.add(EXTENDED_RANDOM);\n list.add(COOKIE);\n list.add(RECORD_SIZE_LIMIT);\n list.add(CONNECTION_ID);\n list.add(ENCRYPTED_CLIENT_HELLO);\n list.add(ENCRYPTED_CLIENT_HELLO_ENCRYPTED_EXTENSIONS);\n\n return list;\n }\n\n public static boolean allowedInEncryptedExtensions(ExtensionType extType) {\n switch (extType) {\n case SERVER_NAME_INDICATION:\n case MAX_FRAGMENT_LENGTH:\n case ELLIPTIC_CURVES:\n case USE_SRTP:\n case HEARTBEAT:\n case ALPN:\n case CLIENT_CERTIFICATE_TYPE:\n case SERVER_CERTIFICATE_TYPE:\n case EARLY_DATA:\n case QUIC_TRANSPORT_PARAMETERS:\n case ENCRYPTED_CLIENT_HELLO_ENCRYPTED_EXTENSIONS:\n case RECORD_SIZE_LIMIT:\n return true;\n default:\n return false;\n }\n }\n\n public static List getNonTls13Extensions() {\n List list = new LinkedList<>();\n list.add(EXTENDED_MASTER_SECRET);\n list.add(EXTENDED_RANDOM);\n list.add(ENCRYPT_THEN_MAC);\n list.add(SRP);\n list.add(TRUNCATED_HMAC);\n list.add(RENEGOTIATION_INFO);\n return list;\n }\n\n public static List getTls13OnlyExtensions() {\n List list = new LinkedList<>();\n list.add(EARLY_DATA);\n list.add(KEY_SHARE);\n return list;\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/FiniteFieldGroups.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\npublic enum FiniteFieldGroups {\n FFDHE2048(new byte[] {01, 00}),\n FFDHE3072(new byte[] {01, 01}),\n FFDHE4096(new byte[] {01, 02}),\n FFDHE6144(new byte[] {01, 03}),\n FFDHE8192(new byte[] {01, 04});\n\n private final byte[] value;\n\n FiniteFieldGroups(byte[] value) {\n this.value = value;\n }\n\n public byte[] getValue() {\n return value;\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/GOSTCurve.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport de.rub.nds.protocol.constants.GroupParameters;\nimport de.rub.nds.protocol.crypto.ec.Point;\nimport org.bouncycastle.asn1.ASN1ObjectIdentifier;\nimport org.bouncycastle.asn1.cryptopro.CryptoProObjectIdentifiers;\nimport org.bouncycastle.asn1.rosstandart.RosstandartObjectIdentifiers;\nimport org.bouncycastle.jce.spec.ECNamedCurveSpec;\n\npublic enum GOSTCurve {\n GostR3410_2001_CryptoPro_A(CryptoProObjectIdentifiers.gostR3410_2001_CryptoPro_A),\n GostR3410_2001_CryptoPro_B(CryptoProObjectIdentifiers.gostR3410_2001_CryptoPro_B),\n GostR3410_2001_CryptoPro_C(CryptoProObjectIdentifiers.gostR3410_2001_CryptoPro_C),\n GostR3410_2001_CryptoPro_XchA(CryptoProObjectIdentifiers.gostR3410_2001_CryptoPro_XchA),\n GostR3410_2001_CryptoPro_XchB(CryptoProObjectIdentifiers.gostR3410_2001_CryptoPro_XchB),\n Tc26_Gost_3410_12_256_paramSetA(\n RosstandartObjectIdentifiers.id_tc26_gost_3410_12_256_paramSetA),\n Tc26_Gost_3410_12_512_paramSetA(\n RosstandartObjectIdentifiers.id_tc26_gost_3410_12_512_paramSetA),\n Tc26_Gost_3410_12_512_paramSetB(\n RosstandartObjectIdentifiers.id_tc26_gost_3410_12_512_paramSetB),\n Tc26_Gost_3410_12_512_paramSetC(\n RosstandartObjectIdentifiers.id_tc26_gost_3410_12_512_paramSetC);\n\n private final ASN1ObjectIdentifier identifier;\n\n private GroupParameters groupParameters;\n\n GOSTCurve(ASN1ObjectIdentifier identifier) {\n this.identifier = identifier;\n }\n\n public ASN1ObjectIdentifier getIdentifier() {\n return identifier;\n }\n\n public GroupParameters getGroupParameters() {\n return groupParameters;\n }\n\n public String getJavaName() {\n return name().replace('_', '-');\n }\n\n public boolean is512bit2012() {\n return name().contains(\"3410_12_512\");\n }\n\n public static GOSTCurve fromNamedSpec(ECNamedCurveSpec spec) {\n return fromString(spec.getName());\n }\n\n public static GOSTCurve fromString(String name) {\n return GOSTCurve.valueOf(name.replace('-', '_'));\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/HKDFAlgorithm.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport de.rub.nds.protocol.constants.MacAlgorithm;\n\npublic enum HKDFAlgorithm {\n TLS_HKDF_SHA256(MacAlgorithm.HMAC_SHA256),\n TLS_HKDF_SHA384(MacAlgorithm.HMAC_SHA384),\n TLS_HKDF_SHA512(MacAlgorithm.HMAC_SHA512),\n TLS_HKDF_SM3(MacAlgorithm.HMAC_SM3);\n\n HKDFAlgorithm(MacAlgorithm macAlgorithm) {\n this.macAlgorithm = macAlgorithm;\n }\n\n private final MacAlgorithm macAlgorithm;\n\n public MacAlgorithm getMacAlgorithm() {\n return macAlgorithm;\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/HandshakeByteLength.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\npublic class HandshakeByteLength {\n\n /** Type length */\n public static final int TYPE_LENGTH = 1;\n\n /** Length length */\n public static final int HANDSHAKE_MESSAGE_LENGTH_FIELD_LENGTH = 3;\n\n /** certificate length field */\n public static final int CERTIFICATE_LENGTH = 3;\n\n /** certificate request context length field */\n public static final int CERTIFICATE_REQUEST_CONTEXT_LENGTH = 1;\n\n /** version field length */\n public static final int VERSION = 2;\n\n /** extension length field length */\n public static final int EXTENSION_LENGTH = 2;\n\n /** certificates length field (certificate array can include several certificates) */\n public static final int CERTIFICATES_LENGTH = 3;\n\n /** cipher suite length field length */\n public static final int CIPHER_SUITES_LENGTH = 2;\n\n /** cipher suite byte length */\n public static final int CIPHER_SUITE = 2;\n\n /** compression length */\n public static final int COMPRESSION = 1;\n\n /** compression length field length */\n public static final int COMPRESSION_LENGTH = 1;\n\n /** message type length */\n public static final int MESSAGE_TYPE = 1;\n\n /** length of the length field included in this message type */\n public static final int MESSAGE_LENGTH_FIELD = 3;\n\n /** random length */\n public static final int RANDOM = 32;\n\n /** length of the session id length field indicating the session id length */\n public static final int SESSION_ID_LENGTH = 1;\n\n /** length of the dtls cookie length field indicating the dtls cookie length */\n public static final int DTLS_COOKIE_LENGTH = 1;\n\n /** unix time byte length */\n public static final int UNIX_TIME = 4;\n\n /** Premaster Secret */\n public static final int PREMASTER_SECRET = 48;\n\n /** Length of the length field for the encrypted Premaster Secret */\n public static final int ENCRYPTED_PREMASTER_SECRET_LENGTH = 2;\n\n /** Master Secret */\n public static final int MASTER_SECRET = 48;\n\n /** Verify data from the finished message */\n public static final int VERIFY_DATA = 12;\n\n /** Length of the signature length field */\n public static final int SIGNATURE_LENGTH = 2;\n\n /** DH modulus length */\n public static final int DH_MODULUS_LENGTH = 2;\n\n /** DH generator length */\n public static final int DH_GENERATOR_LENGTH = 2;\n\n /** DH public key length */\n public static final int DH_PUBLICKEY_LENGTH = 2;\n\n /** DHE param length */\n public static final int DHE_PARAM_LENGTH = 2;\n\n /** ECDH param length */\n public static final int ECDH_PARAM_LENGTH = 1;\n\n /** ECDHE param length */\n public static final int ECDHE_PARAM_LENGTH = 1;\n\n /** Certificate Types Count in CertRequest */\n public static final int CERTIFICATES_TYPES_COUNT = 1;\n\n /** Length of the signature hash algorithms length field */\n public static final int SIGNATURE_HASH_ALGORITHMS_LENGTH = 2;\n\n /** Length of the signature algorithm field */\n public static final int SIGNATURE = 1;\n\n /** Length of the hash algorithm field */\n public static final int HASH = 1;\n\n /** Length of the signature hash algorithms field in the certificateVerify message */\n public static final int SIGNATURE_HASH_ALGORITHM = 2;\n\n /** Length of the distinguished names length field */\n public static final int DISTINGUISHED_NAMES_LENGTH = 2;\n\n /** Length of an elliptic curve field */\n public static final int ELLIPTIC_CURVE = 1;\n\n /** Length of a named group constant */\n public static final int NAMED_GROUP = 2;\n\n /** Length of the cookie field in DTLS ClientHello and ClientHelloVerify messages. */\n public static final int DTLS_HANDSHAKE_COOKIE_LENGTH = 1;\n\n /** Length of the Message Sequence field */\n public static final int DTLS_MESSAGE_SEQUENCE = 2;\n\n /** Fragment Offset length */\n public static final int DTLS_FRAGMENT_OFFSET = 3;\n\n /** Fragment length */\n public static final int DTLS_FRAGMENT_LENGTH = 3;\n\n /** Length of PSK_Identity */\n public static final int PSK_IDENTITY_LENGTH = 2;\n\n public static final int PSK_LENGTH = 2;\n\n public static final int PSK_ZERO = 0;\n\n public static final int SRP_MODULUS_LENGTH = 2;\n\n public static final int SRP_SALT_LENGTH = 1;\n\n public static final int SRP_GENERATOR_LENGTH = 2;\n\n public static final int SRP_PUBLICKEY_LENGTH = 2;\n\n /** New Session Ticket */\n public static final int NEWSESSIONTICKET_TICKET_LENGTH = 2;\n\n public static final int NEWSESSIONTICKET_LIFETIMEHINT_LENGTH = 4;\n\n public static final int ENCRYPTED_STATE_LENGTH = 2;\n\n public static final int TICKET_AGE_ADD_LENGTH = 4;\n\n public static final int TICKET_NONCE_LENGTH = 1;\n\n /** length of the ClientAuthenticationType in the TLS byte arrays */\n public static final int CLIENT_AUTHENTICATION_TYPE = 1;\n\n /** Length of the Supplemental Data Field */\n public static final int SUPPLEMENTAL_DATA_LENGTH = 3;\n\n /** Length of the Supplemental Data Entry Type */\n public static final int SUPPLEMENTAL_DATA_ENTRY_TYPE_LENGTH = 2;\n\n /** Length of the Supplemental Data Entry */\n public static final int SUPPLEMENTAL_DATA_ENTRY_LENGTH = 2;\n\n /** Length of the salt in PWD */\n public static final int PWD_SALT_LENGTH = 1;\n\n /** Length of the element in PWD */\n public static final int PWD_ELEMENT_LENGTH = 1;\n\n /** Length of the scalar in PWD */\n public static final int PWD_SCALAR_LENGTH = 1;\n\n /** certificate status type length field */\n public static final int CERTIFICATE_STATUS_TYPE_LENGTH = 1;\n\n /** certificate status response length field */\n public static final int CERTIFICATE_STATUS_RESPONSE_LENGTH = 3;\n\n /** RSA modulus length */\n public static final int RSA_MODULUS_LENGTH = 2;\n\n /** RSA public key length */\n public static final int RSA_PUBLICKEY_LENGTH = 2;\n\n /** KeyUpdate Message Length */\n public static final int KEY_UPDATE_LENGTH = 1;\n\n /** RequestConnectionId number of CIDs length */\n public static final int REQUEST_CONNECTION_ID_NUMBER_CIDS_LENGTH = 1;\n\n /** NewConnectionId length of the number of CIDs */\n public static final int NEW_CONNECTION_ID_CIDS_LENGTH = 2;\n\n /** NewConnectionId usage length */\n public static final int NEW_CONNECTION_ID_USAGE_LENGTH = 1;\n\n /** ConnectionId length field length */\n public static final int CONNECTION_ID_LENGTH = 1;\n\n private HandshakeByteLength() {}\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/HandshakeMessageType.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport java.util.HashMap;\nimport java.util.Map;\n\n/** Also called Handshake Type */\npublic enum HandshakeMessageType {\n UNKNOWN((byte) 255),\n HELLO_REQUEST((byte) 0),\n CLIENT_HELLO((byte) 1),\n SERVER_HELLO((byte) 2),\n HELLO_VERIFY_REQUEST((byte) 3),\n NEW_SESSION_TICKET((byte) 4),\n END_OF_EARLY_DATA((byte) 5),\n // HELLO_RETRY_REQUEST((byte) 6), ONLY IN TLS 1.3 DRAFT\n ENCRYPTED_EXTENSIONS((byte) 8),\n REQUEST_CONNECTION_ID((byte) 9),\n NEW_CONNECTION_ID((byte) 10),\n CERTIFICATE((byte) 11),\n SERVER_KEY_EXCHANGE((byte) 12),\n CERTIFICATE_REQUEST((byte) 13),\n SERVER_HELLO_DONE((byte) 14),\n CERTIFICATE_VERIFY((byte) 15),\n CLIENT_KEY_EXCHANGE((byte) 16),\n FINISHED((byte) 20),\n KEY_UPDATE((byte) 24),\n CERTIFICATE_STATUS((byte) 22),\n SUPPLEMENTAL_DATA((byte) 23),\n MESSAGE_HASH((byte) 254);\n\n private int value;\n\n private static final Map MAP;\n\n HandshakeMessageType(byte value) {\n this.value = value;\n }\n\n HandshakeMessageType() {\n this.value = -1;\n }\n\n static {\n MAP = new HashMap<>();\n for (HandshakeMessageType cm : values()) {\n if (cm == UNKNOWN || cm.name().contains(\"SSL2\")) {\n continue;\n }\n MAP.put((byte) cm.value, cm);\n }\n }\n\n public static HandshakeMessageType getMessageType(byte value) {\n HandshakeMessageType type = MAP.get(value);\n if (type == null) {\n type = UNKNOWN;\n }\n return type;\n }\n\n public byte getValue() {\n return (byte) value;\n }\n\n public byte[] getArrayValue() {\n return new byte[] {(byte) value};\n }\n\n public String getName() {\n return this.name();\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/HeartbeatByteLength.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\npublic class HeartbeatByteLength {\n\n /** payload length field */\n public static final int TYPE = 1;\n\n /** payload length field */\n public static final int PAYLOAD_LENGTH = 2;\n\n private HeartbeatByteLength() {}\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/HeartbeatMessageType.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport java.util.HashMap;\nimport java.util.Map;\n\npublic enum HeartbeatMessageType {\n HEARTBEAT_REQUEST((byte) 1),\n HEARTBEAT_RESPONSE((byte) 2);\n\n private byte value;\n\n private static final Map MAP;\n\n HeartbeatMessageType(byte value) {\n this.value = value;\n }\n\n static {\n MAP = new HashMap<>();\n for (HeartbeatMessageType cm : values()) {\n MAP.put(cm.value, cm);\n }\n }\n\n public static HeartbeatMessageType getHeartbeatMessageType(byte value) {\n return MAP.get(value);\n }\n\n public byte getValue() {\n return value;\n }\n\n public byte[] getArrayValue() {\n return new byte[] {value};\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/HeartbeatMode.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport java.util.HashMap;\nimport java.util.Map;\nimport java.util.Random;\n\npublic enum HeartbeatMode {\n PEER_ALLOWED_TO_SEND((byte) 1),\n PEER_NOT_ALLOWED_TO_SEND((byte) 2);\n\n private byte value;\n\n private static final Map MAP;\n\n HeartbeatMode(byte value) {\n this.value = value;\n }\n\n static {\n MAP = new HashMap<>();\n for (HeartbeatMode cm : values()) {\n MAP.put(cm.value, cm);\n }\n }\n\n public static HeartbeatMode getHeartbeatMessageType(byte value) {\n return MAP.get(value);\n }\n\n public byte getValue() {\n return value;\n }\n\n public byte[] getArrayValue() {\n return new byte[] {value};\n }\n\n public static HeartbeatMode getRandom(Random random) {\n HeartbeatMode c = null;\n while (c == null) {\n Object[] o = MAP.values().toArray();\n c = (HeartbeatMode) o[random.nextInt(o.length)];\n }\n return c;\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/HpkeLabel.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport java.nio.charset.StandardCharsets;\n\npublic enum HpkeLabel {\n EMPTY(\"\"),\n\n PSK_ID_HASH(\"psk_id_hash\"),\n\n INFO_HASH(\"info_hash\"),\n\n SECRET(\"secret\"),\n\n KEY(\"key\"),\n\n BASE_NONCE(\"base_nonce\"),\n\n EXPAND(\"exp\"),\n\n KEM(\"KEM\"),\n\n HPKE(\"HPKE\"),\n\n EXTRACT_AND_EXPAND(\"eae_prk\"),\n\n SHARED_SECRET(\"shared_secret\"),\n\n HPKE_VERSION_1(\"HPKE-v1\");\n\n private final String name;\n\n HpkeLabel(String name) {\n this.name = name;\n }\n\n public byte[] getBytes() {\n return this.name.getBytes(StandardCharsets.US_ASCII);\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/KeyExchangeAlgorithm.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\npublic enum KeyExchangeAlgorithm {\n NULL,\n DHE_DSS,\n DHE_RSA,\n DHE_PSK,\n DH_ANON,\n RSA,\n RSA_EXPORT,\n RSA_PSK,\n DH_DSS,\n DH_RSA,\n KRB5,\n SRP_SHA_DSS,\n SRP_SHA_RSA,\n SRP_SHA,\n PSK,\n ECDH_RSA,\n ECDH_ANON,\n ECDH_ECDSA,\n ECDHE_ECDSA,\n ECDHE_RSA,\n ECDHE_PSK,\n VKO_GOST94,\n VKO_GOST01,\n VKO_GOST12,\n FORTEZZA_KEA,\n ECMQV_ECDSA,\n ECMQV_ECNRA,\n ECDH_ECNRA,\n CECPQ1_ECDSA,\n ECCPWD,\n CECPQ1_RSA,\n GOSTR341112_256;\n\n public boolean isKeyExchangeRsa() {\n switch (this) {\n case RSA:\n case RSA_EXPORT:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeDh() {\n switch (this) {\n case DHE_DSS:\n case DHE_PSK:\n case DHE_RSA:\n case DH_ANON:\n case DH_DSS:\n case DH_RSA:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeStaticDh() {\n switch (this) {\n case DH_DSS:\n case DH_RSA:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isSrp() {\n switch (this) {\n case SRP_SHA_DSS:\n case SRP_SHA_RSA:\n case SRP_SHA:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeDhe() {\n switch (this) {\n case DHE_DSS:\n case DHE_PSK:\n case DHE_RSA:\n case DH_ANON: // This is also ephemeral(!)\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeEcdhe() {\n switch (this) {\n case ECDHE_ECDSA:\n case ECDHE_PSK:\n case ECDHE_RSA:\n case ECDH_ANON:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeEcdh() {\n switch (this) {\n case ECDHE_ECDSA:\n case ECDHE_PSK:\n case ECDHE_RSA:\n case ECDH_ANON:\n case ECDH_ECDSA:\n case ECDH_ECNRA:\n case ECDH_RSA:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeStaticEcdh() {\n switch (this) {\n case ECDH_ECDSA:\n case ECDH_ECNRA:\n case ECDH_RSA:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeEphemeralEcdh() {\n switch (this) {\n case ECDHE_ECDSA:\n case ECDHE_PSK:\n case ECDHE_RSA:\n case ECDH_ANON: // This is also ephemeral(!)\n return true;\n default:\n return false;\n }\n }\n\n public boolean isKeyExchangeEphemeral() {\n switch (this) {\n case ECDHE_ECDSA:\n case ECDHE_PSK:\n case ECDHE_RSA:\n case ECDH_ANON: // This is also ephemeral(!)\n case DHE_DSS:\n case DHE_PSK:\n case DHE_RSA:\n case DH_ANON: // This is also ephemeral(!)\n return true;\n default:\n return false;\n }\n }\n\n public boolean isEC() {\n switch (this) {\n case ECDH_RSA:\n case ECDH_ANON:\n case ECDH_ECDSA:\n case ECDHE_ECDSA:\n case ECDHE_RSA:\n case ECDHE_PSK:\n case ECDH_ECNRA:\n case ECMQV_ECDSA:\n case ECMQV_ECNRA:\n case CECPQ1_ECDSA:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isAnon() {\n switch (this) {\n case DH_ANON:\n case ECDH_ANON:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isPsk() {\n switch (this) {\n case PSK:\n case RSA_PSK:\n case DHE_PSK:\n case ECDHE_PSK:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isExport() {\n return this.name().contains(\"EXPORT\");\n }\n\n public boolean requiresCertificate() {\n switch (this) {\n case RSA:\n case RSA_EXPORT:\n case DHE_DSS:\n case DHE_RSA:\n case DH_DSS:\n case DH_RSA:\n case ECDHE_ECDSA:\n case ECDHE_RSA:\n case ECDH_RSA:\n case ECDH_ECDSA:\n case ECDH_ECNRA:\n case ECMQV_ECDSA:\n case ECMQV_ECNRA:\n case CECPQ1_ECDSA:\n case VKO_GOST01:\n case VKO_GOST12:\n case SRP_SHA_DSS:\n case SRP_SHA_RSA:\n return true;\n case FORTEZZA_KEA: // I dont know if this is correct actually\n case KRB5:\n case PSK:\n case RSA_PSK:\n case ECDHE_PSK:\n case DHE_PSK:\n case ECCPWD:\n case SRP_SHA:\n case DH_ANON:\n case ECDH_ANON:\n case NULL:\n return false;\n default:\n throw new UnsupportedOperationException(\n this.name()\n + \" not defined yet! Please ask the developers to add this KEX algorithm\");\n }\n }\n\n public boolean isDss() {\n switch (this) {\n case DHE_DSS:\n case DH_DSS:\n case SRP_SHA_DSS:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isGost() {\n switch (this) {\n case VKO_GOST94:\n case VKO_GOST01:\n case VKO_GOST12:\n case GOSTR341112_256:\n return true;\n default:\n return false;\n }\n }\n\n public boolean isEcdsa() {\n switch (this) {\n case ECDHE_ECDSA:\n case ECDH_ECDSA:\n case ECMQV_ECDSA:\n case CECPQ1_ECDSA:\n return true;\n default:\n return false;\n }\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/KeyUpdateRequest.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\npublic enum KeyUpdateRequest {\n UPDATE_NOT_REQUESTED((byte) 0),\n UPDATE_REQUESTED((byte) 1);\n\n private byte value;\n\n KeyUpdateRequest(byte value) {\n this.value = value;\n }\n\n public byte getValue() {\n return value;\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/ListDelegateType.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\n/** Types that can be listed via ListDelegate */\npublic enum ListDelegateType {\n ciphers,\n filters,\n groups,\n sign_hash_algos,\n workflow_trace_types\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/MaxFragmentLength.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport java.util.HashMap;\nimport java.util.Map;\nimport java.util.Random;\n\npublic enum MaxFragmentLength {\n TWO_9((byte) 1, 512),\n TWO_10((byte) 2, 1024),\n TWO_11((byte) 3, 2048),\n TWO_12((byte) 4, 4096);\n\n private byte value;\n\n private int lengthValue;\n\n private static final Map MAP;\n\n MaxFragmentLength(byte value, int lengthValue) {\n this.value = value;\n this.lengthValue = lengthValue;\n }\n\n static {\n MAP = new HashMap<>();\n for (MaxFragmentLength cm : values()) {\n MAP.put(cm.value, cm);\n }\n }\n\n public static MaxFragmentLength getMaxFragmentLength(byte value) {\n return MAP.get(value);\n }\n\n public byte getValue() {\n return value;\n }\n\n public byte[] getArrayValue() {\n return new byte[] {value};\n }\n\n public static MaxFragmentLength getRandom(Random random) {\n MaxFragmentLength c = null;\n while (c == null) {\n Object[] o = MAP.values().toArray();\n c = (MaxFragmentLength) o[random.nextInt(o.length)];\n }\n return c;\n }\n\n public int getReceiveLimit() {\n return lengthValue;\n }\n}\n"
},
{
"path": "TLS-Core/src/main/java/de/rub/nds/tlsattacker/core/constants/NamedGroup.java",
"content": "/*\n * TLS-Attacker - A Modular Penetration Testing Framework for TLS\n *\n * Copyright 2014-2023 Ruhr University Bochum, Paderborn University, Technology Innovation Institute, and Hackmanit GmbH\n *\n * Licensed under Apache License, Version 2.0\n * http://www.apache.org/licenses/LICENSE-2.0.txt\n */\npackage de.rub.nds.tlsattacker.core.constants;\n\nimport de.rub.nds.protocol.constants.EcCurveEquationType;\nimport de.rub.nds.protocol.constants.FfdhGroupParameters;\nimport de.rub.nds.protocol.constants.GroupParameters;\nimport de.rub.nds.protocol.constants.NamedEllipticCurveParameters;\nimport de.rub.nds.protocol.crypto.ec.EllipticCurve;\nimport de.rub.nds.protocol.crypto.ffdh.Rfc7919Group2048;\nimport de.rub.nds.protocol.crypto.ffdh.Rfc7919Group3072;\nimport de.rub.nds.protocol.crypto.ffdh.Rfc7919Group4096;\nimport de.rub.nds.protocol.crypto.ffdh.Rfc7919Group6144;\nimport de.rub.nds.protocol.crypto.ffdh.Rfc7919Group8192;\nimport de.rub.nds.protocol.util.SilentByteArrayOutputStream;\nimport de.rub.nds.x509attacker.constants.X509NamedCurve;\nimport java.io.ByteArrayInputStream;\nimport java.io.IOException;\nimport java.nio.ByteBuffer;\nimport java.util.ArrayList;\nimport java.util.Arrays;\nimport java.util.HashMap;\nimport java.util.HashSet;\nimport java.util.LinkedList;\nimport java.util.List;\nimport java.util.Map;\nimport java.util.Random;\nimport java.util.Set;\nimport org.apache.logging.log4j.LogManager;\nimport org.apache.logging.log4j.Logger;\n\npublic enum NamedGroup {\n SECT163K1(new byte[] {(byte) 0, (byte) 1}, NamedEllipticCurveParameters.SECT163K1),\n SECT163R1(new byte[] {(byte) 0, (byte) 2}, NamedEllipticCurveParameters.SECT163R1),\n SECT163R2(new byte[] {(byte) 0, (byte) 3}, NamedEllipticCurveParameters.SECT163R2),\n SECT193R1(new byte[] {(byte) 0, (byte) 4}, NamedEllipticCurveParameters.SECT193R1),\n SECT193R2(new byte[] {(byte) 0, (byte) 5}, NamedEllipticCurveParameters.SECT193R2),\n SECT233K1(new byte[] {(byte) 0, (byte) 6}, NamedEllipticCurveParameters.SECT233K1),\n SECT233R1(new byte[] {(byte) 0, (byte) 7}, NamedEllipticCurveParameters.SECT233R1),\n SECT239K1(new byte[] {(byte) 0, (byte) 8}, NamedEllipticCurveParameters.SECT239K1),\n SECT283K1(new byte[] {(byte) 0, (byte) 9}, NamedEllipticCurveParameters.SECT283K1),\n SECT283R1(new byte[] {(byte) 0, (byte) 10}, NamedEllipticCurveParameters.SECT283R1),\n SECT409K1(new byte[] {(byte) 0, (byte) 11}, NamedEllipticCurveParameters.SECT409K1),\n SECT409R1(new byte[] {(byte) 0, (byte) 12}, NamedEllipticCurveParameters.SECT409R1),\n SECT571K1(new byte[] {(byte) 0, (byte) 13}, NamedEllipticCurveParameters.SECT571K1),\n SECT571R1(new byte[] {(byte) 0, (byte) 14}, NamedEllipticCurveParameters.SECT571R1),\n SECP160K1(new byte[] {(byte) 0, (byte) 15}, NamedEllipticCurveParameters.SECP160K1),\n SECP160R1(new byte[] {(byte) 0, (byte) 16}, NamedEllipticCurveParameters.SECP160R1),\n SECP160R2(new byte[] {(byte) 0, (byte) 17}, NamedEllipticCurveParameters.SECP160R2),\n SECP192K1(new byte[] {(byte) 0, (byte) 18}, NamedEllipticCurveParameters.SECP192K1),\n SECP192R1(new byte[] {(byte) 0, (byte) 19}, NamedEllipticCurveParameters.SECP192R1),\n SECP224K1(new byte[] {(byte) 0, (byte) 20}, NamedEllipticCurveParameters.SECP224K1),\n SECP224R1(new byte[] {(byte) 0, (byte) 21}, NamedEllipticCurveParameters.SECP224R1),\n SECP256K1(new byte[] {(byte) 0, (byte) 22}, NamedEllipticCurveParameters.SECP256K1),\n SECP256R1(new byte[] {(byte) 0, (byte) 23}, NamedEllipticCurveParameters.SECP256R1),\n SECP384R1(new byte[] {(byte) 0, (byte) 24}, NamedEllipticCurveParameters.SECP384R1),\n SECP521R1(new byte[] {(byte) 0, (byte) 25}, NamedEllipticCurveParameters.SECP521R1),\n BRAINPOOLP256R1(new byte[] {(byte) 0, (byte) 26}, NamedEllipticCurveParameters.BRAINPOOLP256R1),\n BRAINPOOLP384R1(new byte[] {(byte) 0, (byte) 27}, NamedEllipticCurveParameters.BRAINPOOLP384R1),\n BRAINPOOLP512R1(new byte[] {(byte) 0, (byte) 28}, NamedEllipticCurveParameters.BRAINPOOLP512R1),\n ECDH_X25519(new byte[] {(byte) 0, (byte) 29}, NamedEllipticCurveParameters.CURVE_X25519),\n ECDH_X448(new byte[] {(byte) 0, (byte) 30}, NamedEllipticCurveParameters.CURVE_X448),\n BRAINPOOLP256R1TLS13(\n new byte[] {(byte) 0, (byte) 31}, NamedEllipticCurveParameters.BRAINPOOLP256R1),\n BRAINPOOLP384R1TLS13(\n new byte[] {(byte) 0, (byte) 32}, NamedEllipticCurveParameters.BRAINPOOLP384R1),\n BRAINPOOLP512R1TLS13(\n new byte[] {(byte) 0, (byte) 33}, NamedEllipticCurveParameters.BRAINPOOLP512R1),\n GC256A(new byte[] {(byte) 0, (byte) 34}, null),\n GC256B(new byte[] {(byte) 0, (byte) 35}, null),\n GC256C(new byte[] {(byte) 0, (byte) 36}, null),\n GC256D(new byte[] {(byte) 0, (byte) 37}, null),\n GC512A(new byte[] {(byte) 0, (byte) 38}, null),\n GC512B(new byte[] {(byte) 0, (byte) 39}, null),\n GC512C(new byte[] {(byte) 0, (byte) 40}, null),\n CURVE_SM2(new byte[] {(byte) 0, (byte) 41}, NamedEllipticCurveParameters.CURVE_SM2),\n FFDHE2048(new byte[] {(byte) 1, (byte) 0}, new Rfc7919Group2048()),\n FFDHE3072(new byte[] {(byte) 1, (byte) 1}, new Rfc7919Group3072()),\n FFDHE4096(new byte[] {(byte) 1, (byte) 2}, new Rfc7919Group4096()),\n FFDHE6144(new byte[] {(byte) 1, (byte) 3}, new Rfc7919Group6144()),\n FFDHE8192(new byte[] {(byte) 1, (byte) 4}, new Rfc7919Group8192()),\n MLKEM512(new byte[] {(byte) 2, (byte) 0}, null),\n MLKEM768(new byte[] {(byte) 2, (byte) 1}, null),\n MLKEM1024(new byte[] {(byte) 2, (byte) 2}, null),\n SECP256R1_MLKEM768(new byte[] {0x11, (byte) 0xEB}, null),\n X25519_MLKEM768(new byte[] {0x11, (byte) 0xEC}, null),\n SECP384R1_MLKEM1024(new byte[] {0x11, (byte) 0xED}, null),\n X25519_KYBER768_DRAFT00(new byte[] {0x63, (byte) 0x99}, null),\n EXPLICIT_PRIME(new byte[] {(byte) 0xFF, (byte) 1}, null),\n // GREASE constants\n EXPLICIT_CHAR2(new byte[] {(byte) 0xFF, (byte) 2}, null),\n GREASE_00(new byte[] {(byte) 0x0A, (byte) 0x0A}, null),\n GREASE_01(new byte[] {(byte) 0x1A, (byte) 0x1A}, null),\n GREASE_02(new byte[] {(byte) 0x2A, (byte) 0x2A}, null),\n GREASE_03(new byte[] {(byte) 0x3A, (byte) 0x3A}, null),\n GREASE_04(new byte[] {(byte) 0x4A, (byte) 0x4A}, null),\n GREASE_05(new byte[] {(byte) 0x5A, (byte) 0x5A}, null),\n GREASE_06(new byte[] {(byte) 0x6A, (byte) 0x6A}, null),\n GREASE_07(new byte[] {(byte) 0x7A, (byte) 0x7A}, null),\n GREASE_08(new byte[] {(byte) 0x8A, (byte) 0x8A}, null),\n GREASE_09(new byte[] {(byte) 0x9A, (byte) 0x9A}, null),\n GREASE_10(new byte[] {(byte) 0xAA, (byte) 0xAA}, null),\n GREASE_11(new byte[] {(byte) 0xBA, (byte) 0xBA}, null),\n GREASE_12(new byte[] {(byte) 0xCA, (byte) 0xCA}, null),\n GREASE_13(new byte[] {(byte) 0xDA, (byte) 0xDA}, null),\n GREASE_14(new byte[] {(byte) 0xEA, (byte) 0xEA}, null),\n GREASE_15(new byte[] {(byte) 0xFA, (byte) 0xFA}, null);\n\n private static final Logger LOGGER = LogManager.getLogger();\n\n private byte[] value;\n\n private GroupParameters groupParameters;\n\n private static final Map MAP;\n\n private static final Set tls13Groups =\n new HashSet<>(\n Arrays.asList(\n ECDH_X25519,\n ECDH_X448,\n FFDHE2048,\n FFDHE3072,\n FFDHE4096,\n FFDHE6144,\n FFDHE8192,\n SECP256R1,\n SECP384R1,\n SECP521R1,\n CURVE_SM2,\n MLKEM512,\n MLKEM768,\n MLKEM1024,\n BRAINPOOLP256R1TLS13,\n BRAINPOOLP384R1TLS13,\n BRAINPOOLP512R1TLS13,\n X25519_MLKEM768,\n SECP256R1_MLKEM768,\n SECP384R1_MLKEM1024));\n\n NamedGroup(byte[] value, GroupParameters group) {\n this.value = value;\n this.groupParameters = group;\n }\n\n static {\n MAP = new HashMap<>();\n for (NamedGroup group : values()) {\n MAP.put(ByteBuffer.wrap(group.value), group);\n }\n }\n\n public static NamedGroup getNamedGroup(byte[] value) {\n return MAP.get(ByteBuffer.wrap(value));\n }\n\n public X509NamedCurve convertToX509() {\n switch (this) {\n case BRAINPOOLP256R1:\n return X509NamedCurve.BRAINPOOLP256R1;\n case BRAINPOOLP384R1:\n return X509NamedCurve.BRAINPOOLP384R1;\n case BRAINPOOLP512R1:\n return X509NamedCurve.BRAINPOOLP512R1;\n case ECDH_X25519:\n case ECDH_X448:\n // X448 and X25519 are special values in x509 that are treated differently to\n // all\n // other curves\n return null;\n case EXPLICIT_CHAR2:\n case EXPLICIT_PRIME:\n // Not a named curve in x509\n return null;\n case FFDHE2048:\n case FFDHE3072:\n case FFDHE4096:\n case FFDHE6144:\n case FFDHE8192:\n // FFDHE has no x509 equivalent\n return null;\n case GREASE_00:\n case GREASE_01:\n case GREASE_02:\n case GREASE_03:\n case GREASE_04:\n case GREASE_05:\n case GREASE_06:\n case GREASE_07:\n case GREASE_08:\n case GREASE_09:\n case GREASE_10:\n case GREASE_11:\n case GREASE_12:\n case GREASE_13:\n case GREASE_14:\n case GREASE_15:\n // GREASE has no equivalent\n return null;\n case SECP160K1:\n return X509NamedCurve.SECP160K1;\n case SECP160R1:\n return X509NamedCurve.SECP160R1;\n case SECP160R2:\n return X509NamedCurve.SECP160R2;\n case SECP192K1:\n return X509NamedCurve.SECP192K1;\n case SECP192R1:\n return X509NamedCurve.SECP192R1;\n case SECP224K1:\n return X509NamedCurve.SECP224K1;\n case SECP224R1:\n return X509NamedCurve.SECP224R1;\n case SECP256K1:\n return X509NamedCurve.SECP256K1;\n case SECP256R1:\n return X509NamedCurve.SECP256R1;\n case SECP384R1:\n return X509NamedCurve.SECP384R1;\n case SECP521R1:\n return X509NamedCurve.SECP521R1;\n case SECT163K1:\n return X509NamedCurve.SECT163K1;\n case SECT163R1:\n return X509NamedCurve.SECT163R1;\n case SECT163R2:\n return X509NamedCurve.SECT163R2;\n case SECT193R1:\n return X509NamedCurve.SECT193R1;\n case SECT193R2:\n return X509NamedCurve.SECT193R2;\n case SECT233K1:\n return X509NamedCurve.SECT233K1;\n case SECT233R1:\n return X509NamedCurve.SECT233R1;\n case SECT239K1:\n return X509NamedCurve.SECT239K1;\n case SECT283K1:\n return X509NamedCurve.SECT283K1;\n case SECT283R1:\n return X509NamedCurve.SECT283R1;\n case SECT409K1:\n return X509NamedCurve.SECT409K1;\n case SECT409R1:\n return X509NamedCurve.SECT409R1;\n case SECT571K1:\n return X509NamedCurve.SECT571K1;\n case SECT571R1:\n return X509NamedCurve.SECT571R1;\n default:\n return null;\n }\n }\n\n public static NamedGroup convertFromX509NamedCurve(X509NamedCurve curve) {\n switch (curve) {\n case BRAINPOOLP160R1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP160T1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP192R1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP192T1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP224R1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP224T1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP256R1:\n return NamedGroup.BRAINPOOLP256R1;\n case BRAINPOOLP256T1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP320R1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP320T1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP384R1:\n return NamedGroup.BRAINPOOLP384R1;\n case BRAINPOOLP384T1:\n return null; // Has no TLS equivalent\n case BRAINPOOLP512R1:\n return NamedGroup.BRAINPOOLP512R1;\n case BRAINPOOLP512T1:\n return null; // Has no TLS equivalent\n case SECP112R1:\n return null; // Has no TLS equivalent\n case SECP112R2:\n return null; // Has no TLS equivalent\n case SECP128R1:\n return null; // Has no TLS equivalent\n case SECP128R2:\n return null; // Has no TLS equivalent\n case SECP160K1:\n return NamedGroup.SECP160K1;\n case SECP160R1:\n return NamedGroup.SECP160R1;\n case SECP160R2:\n return NamedGroup.SECP160R2;\n case SECP192K1:\n return NamedGroup.SECP192K1;\n case SECP192R1:\n return NamedGroup.SECP192R1;\n case SECP224K1:\n return NamedGroup.SECP224K1;\n case SECP224R1:\n return NamedGroup.SECP224R1;\n case SECP256K1:\n return NamedGroup.SECP256K1;\n case SECP256R1:\n return NamedGroup.SECP256R1;\n case SECP384R1:\n return NamedGroup.SECP384R1;\n case SECP521R1:\n return NamedGroup.SECP521R1;\n case SECT113R1:\n return null; // Has no TLS equivalent\n case SECT113R2:\n return null; // Has no TLS equivalent\n case SECT131R1:\n return null; // Has no TLS equivalent\n case SECT131R2:\n return null; // Has no TLS equivalent\n case SECT163K1:\n return NamedGroup.SECT163K1;\n case SECT163R1:\n return NamedGroup.SECT163R1;\n case SECT163R2:\n return NamedGroup.SECT163R2;\n case SECT193R1:\n return NamedGroup.SECT193R1;\n case SECT193R2:\n return NamedGroup.SECT193R2;\n case SECT233K1:\n return NamedGroup.SECT233K1;\n case SECT233R1:\n return NamedGroup.SECT233R1;\n case SECT239K1:\n return NamedGroup.SECT239K1;\n case SECT283K1:\n return NamedGroup.SECT283K1;\n case SECT283R1:\n return NamedGroup.SECT283R1;\n case SECT409K1:\n return NamedGroup.SECT409K1;\n case SECT409R1:\n return NamedGroup.SECT409R1;\n case SECT571K1:\n return NamedGroup.SECT571K1;\n case SECT571R1:\n return NamedGroup.SECT571R1;\n default:\n return null;\n }\n }\n\n public static NamedGroup convert(GroupParameters parameters) {\n for (NamedGroup group : values()) {\n if (group.getGroupParameters() == parameters) {\n return group;\n }\n }\n return null;\n }\n\n public byte[] getValue() {\n return value;\n }\n\n public GroupParameters getGroupParameters() {\n return groupParameters;\n }\n\n public static NamedGroup getRandom(Random random) {\n NamedGroup c = null;\n while (c == null) {\n Object[] o = MAP.values().toArray();\n c = (NamedGroup) o[random.nextInt(o.length)];\n }\n return c;\n }\n\n public static byte[] namedGroupsToByteArray(List groups) throws IOException {\n if (groups == null || groups.isEmpty()) {\n return new byte[0];\n }\n\n try (SilentByteArrayOutputStream bytes = new SilentByteArrayOutputStream()) {\n for (NamedGroup i : groups) {\n bytes.write(i.getValue());\n }\n return bytes.toByteArray();\n }\n }\n\n public static List