Contents

TLS defines about a hundred structures, this module and submodules are about providing python classes for them.

TLS is an extensible protocole, many of the structures present here are not defined in RFC 8446 (TLS 1.3) but instead defined in other RFCs. Often a RFC will define a new structure and IANA will grant it a unique identifier in one of its enumerations. TLS implementations (like siotls) can choose to ignore that extension or to support it.

siotls tries to parse all structures, but does not necessarely supports them all, i.e. it is possible that it parses a structure but does nothing with it. It stores the structures it doesn’t know as opaque bytes.

The siotls.iana module contains all the IANA enumerations and values. When the enumeration is for a TLS structure, then there’s an abstract base class named after the enumeration, and as many concrete classes as there are values inside the enumeration.

For example, the siotls.iana.ContentType is an enumeration with 5 values: CHANGE_CIPHER_SPEC, ALERT, HANDSHAKE, APPLICATION_DATA, HEARTBEAT. For those, Content is the abstract base class, and ChangeCipherSpec, Alert, Handshake, ApplicationData, and Heartbeat are the concrete classes.

Every concrete class is automatically registered inside the abstract base class it implements, using the enumeration value as key:

>>> siotls.contents.Content[siotls.iana.ContentType.ALERT]
<class siotls.contents.alerts.Alert>

On the wire the structures are generally serialized as follow:

b"{type}{length}{structure}"

The way siotls works, it uses the abstract base class to start parsing the data, to read the type and length. The abstract base class then specializes itself into the concrete class for type and continues parsing using that concrete class.

>>> Handshake.parse(TLSIO(b"\x01" + ...))
ClientHello(...)  # ClientHello has msg_type=0x01

Pretty much all objects are parsed as above, with the notable exception of the top-level Content which is a bit more complicated due to its relation with the Record Protocol (RFC 8446 Section 5).

>>> Content.get_parser(0x16)
<class siotls.contents.handshakes.Handshake>  # Handshake has content_type=0x16
>>> _.parse(TLSIO(b"\x01" + ...))
ClientHello(...)

class siotls.contents.Content

Top-level TLS object.

Abstract base class and registry for siotls.iana.ContentType.

can_fragment: bool

Can this content be fragmented over multiple TLS records?

content_type: ContentType

The unique numeric identifier of the content.

classmethod get_parser(content_type)

Get the concrete Content class for content_type.

Return type:

a class that inherits from both Content and siotls.language.Serializable.

Raises:

alerts.DecodeError – When content_type is not known.

Parameters:

content_type (ContentType | int)

The following modules define the concretes classes for Content:

• Alerts
• Application Data
• Change Cipher Spec
• Handshakes
• Heartbeat