Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

new feature: capture TLS 1.3 master secret #143

Merged
merged 12 commits into from
Jul 27, 2022
Merged

new feature: capture TLS 1.3 master secret #143

merged 12 commits into from
Jul 27, 2022

Conversation

cfc4n
Copy link
Member

@cfc4n cfc4n commented Jul 23, 2022

for #142

description:
as wireshark description about (pre)-master-secrets via : https://firefox-source-docs.mozilla.org/security/nss/legacy/key_log_format/index.html

CLIENT_EARLY_TRAFFIC_SECRET: the hex-encoded early traffic secret for the client side (for TLS 1.3)

CLIENT_HANDSHAKE_TRAFFIC_SECRET: the hex-encoded handshake traffic secret for the client side (for TLS 1.3)

SERVER_HANDSHAKE_TRAFFIC_SECRET: the hex-encoded handshake traffic secret for the server side (for TLS 1.3)

CLIENT_TRAFFIC_SECRET_0: the first hex-encoded application traffic secret for the client side (for TLS 1.3)

SERVER_TRAFFIC_SECRET_0: the first hex-encoded application traffic secret for the server side (for TLS 1.3)

EARLY_EXPORTER_SECRET: the hex-encoded early exporter secret (for TLS 1.3).

EXPORTER_SECRET: the hex-encoded exporter secret (for TLS 1.3)

@cfc4n
update CHANGELOG.md
a723bd8 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
user : add TLS 1.3 master secret event.
eecf74d 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
improve TLS 1.3 master secret.
eda0c38 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
improve: get SESSION_CIPHER->cipher->id for tls 1.3
3c971eb 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
get all master_secrets of tls 1.3 ,sent to userspace by ebpf map.
e4dfc84 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n cfc4n linked an issue Jul 23, 2022 that may be closed by this pull request
support tls 1.3 master secret #142
Closed
@cfc4n cfc4n marked this pull request as draft July 23, 2022 16:37
@cfc4n
user : fix format string args miss.
69971cc 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
pkg : add hkdf package.
bb21173 
HKDF is a cryptographic key derivation function (KDF) with the goal of expanding limited input keying material into one or more cryptographically strong secret keys.

RFC 5869: https://tools.ietf.org/html/rfc5869

Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
user : improve TLS 1.3 master secrets save to logfile.
fcb53b0 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n cfc4n marked this pull request as ready for review July 25, 2022 15:32
@cfc4n cfc4n requested review from SenberHu and xjas July 26, 2022 10:21
@cfc4n
user : set transcript by event.CipherId
dd5ea7a 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
user : update transcript by event.CipherId
bd1550e 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
pkg: rename hkdf expandLable function name to DeriveSecret.
b9bc9a4 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n
user : use constants from hkdf package.
662a594 
Signed-off-by: CFC4N <cfc4n.cs@gmail.com>
@cfc4n cfc4n requested a review from chriskaliX July 27, 2022 14:37
@cfc4n cfc4n merged commit 7300085 into master Jul 27, 2022
@cfc4n cfc4n added the enhancement New feature or request label Jul 27, 2022
@cfc4n cfc4n deleted the tls-1_3-master-secret branch July 27, 2022 14:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@SenberHu SenberHu Awaiting requested review from SenberHu

@xjas xjas Awaiting requested review from xjas

@chriskaliX chriskaliX Awaiting requested review from chriskaliX

Assignees

@cfc4n cfc4n

@chriskaliX chriskaliX

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

support tls 1.3 master secret
2 participants
@cfc4n @chriskaliX