Data format: binary. Default file extension: '.tlsn'
| Field description (size in bytes) | code in Python version |
|---|---|
| Header (29) | 'tlsnotary notarization file\n\n' |
| File Version (2) | '\x00\x01' version 0.1 |
| Chosen cipher suite (2) | shared.bi2ba(tlsn_session.chosen_cipher_suite,fixed=2) |
| Client random (32) | tlsn_session.client_random |
| Server random (32) | tlsn_session.server_random |
| Premaster secret 1st half (24) | tlsn_session.pms1 |
| Premaster secret 2nd half (24) | tlsn_session.pms2 |
| Audited site server cert length (3) | |
| Audited site server cert (var) | |
| Audit TLS version used (2) | tlsn_session.tlsver |
| Audit TLS version initially requested (2) | tlsn_session.initial_tlsver |
| Server response length (8) | shared.bi2ba(len(response),fixed=8) |
| Encrypted server response (var) | response |
| IV after finished length (2) | len(IV) |
| IV after finished ([16|258]) | IV |
| Notary signature length (2) | len(signature) |
| Notary signature ([2048|4096..]) | signature |
| Commit sha256 hash (32) | commit_hash |
| Notary pubkey (same as Notary signature) | (N as bytearray) |
| OPTIONAL decrypted server response (to EOF) |
Note: the signature is on the data: commitment_hash(32) + pms2(24) + audited_site_server_modulus(var) - this last is embedded in the server cert.