mirror of
https://github.com/refraction-networking/utls.git
synced 2025-04-03 20:17:36 +03:00
crypto/tls: expose extensions presented by client to GetCertificate
This enables JA3 and JA4 TLS fingerprinting to be implemented from the GetCertificate callback, similar to what BoringSSL provides with its SSL_CTX_set_dos_protection_cb hook. fixes #32936 Change-Id: Idb54ebcb43075582fcef0ac6438727f494543424 Reviewed-on: https://go-review.googlesource.com/c/go/+/471396 Reviewed-by: Dmitri Shuralyov <dmitshur@google.com> Reviewed-by: Roland Shoemaker <roland@golang.org> LUCI-TryBot-Result: Go LUCI <golang-scoped@luci-project-accounts.iam.gserviceaccount.com>
This commit is contained in:
Bobby Powers
Roland Shoemaker
parent
681bfddd9d
commit
0d9e15f699
5 changed files with 80 additions and 0 deletions
|
|
@ -447,6 +447,10 @@ type ClientHelloInfo struct {
|
|||
// might be rejected if used.
|
||||
SupportedVersions []uint16
|
||||
|
||||
// Extensions lists the IDs of the extensions presented by the client
|
||||
// in the client hello.
|
||||
Extensions []uint16
|
||||
|
||||
// Conn is the underlying net.Conn for the connection. Do not read
|
||||
// from, or write to, this connection; that will cause the TLS
|
||||
// connection to fail.
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue