doxygen/msg__cert__status_8cpp_source.html

/*

* Certificate Status

* (C) 2016 Jack Lloyd

*

* Botan is released under the Simplified BSD License (see license.txt)

*/


#include <botan/tls_messages.h>


#include <botan/ber_dec.h>

#include <botan/der_enc.h>

#include <botan/ocsp.h>

#include <botan/tls_extensions.h>

#include <botan/internal/tls_handshake_hash.h>

#include <botan/internal/tls_handshake_io.h>

#include <botan/internal/tls_reader.h>


namespace Botan::TLS {


Certificate_Status::Certificate_Status(const std::vector<uint8_t>& buf, const Connection_Side) {

   if(buf.size() < 5) {

      throw Decoding_Error("Invalid Certificate_Status message: too small");

   }


   if(buf[0] != 1) {  // not OCSP

      throw Decoding_Error("Unexpected Certificate_Status message: unexpected response type");

   }


   size_t len = make_uint32(0, buf[1], buf[2], buf[3]);


   // Verify the redundant length field...

   if(buf.size() != len + 4) {

      throw Decoding_Error("Invalid Certificate_Status: invalid length field");

   }


   m_response.assign(buf.begin() + 4, buf.end());

}


Certificate_Status::Certificate_Status(Handshake_IO& io, Handshake_Hash& hash, const OCSP::Response& ocsp) :

      m_response(ocsp.raw_bits()) {

   hash.update(io.send(*this));

}


Certificate_Status::Certificate_Status(Handshake_IO& io,

                                       Handshake_Hash& hash,

                                       std::vector<uint8_t> raw_response_bytes) :

      Certificate_Status(std::move(raw_response_bytes)) {

   hash.update(io.send(*this));

}


Certificate_Status::Certificate_Status(std::vector<uint8_t> raw_response_bytes) :

      m_response(std::move(raw_response_bytes)) {}


std::vector<uint8_t> Certificate_Status::serialize() const {

   if(m_response.size() > 0xFFFFFF) {  // unlikely

      throw Encoding_Error("OCSP response too long to encode in TLS");

   }


   const uint32_t response_len = static_cast<uint32_t>(m_response.size());


   std::vector<uint8_t> buf;

   buf.reserve(1 + 3 + m_response.size());

   buf.push_back(1);  // type OCSP

   for(size_t i = 1; i < 4; ++i) {

      buf.push_back(get_byte_var(i, response_len));

   }


   buf += m_response;

   return buf;

}


}  // namespace Botan::TLS

Botan::Decoding_Error
Definition exceptn.h:191

Botan::Encoding_Error
Definition exceptn.h:181

Botan::OCSP::Response
Definition ocsp.h:127

Botan::TLS::Certificate_Status
Definition tls_messages.h:670

Botan::TLS::Certificate_Status::Certificate_Status
Certificate_Status(const std::vector< uint8_t > &buf, Connection_Side from)
Definition msg_cert_status.cpp:20

Botan::TLS::Certificate_Status::serialize
std::vector< uint8_t > serialize() const override
Definition msg_cert_status.cpp:54

Botan::TLS::Handshake_Hash
Definition tls_handshake_hash.h:19

Botan::TLS::Handshake_Hash::update
void update(const uint8_t in[], size_t length)
Definition tls_handshake_hash.h:21

Botan::TLS::Handshake_IO
Definition tls_handshake_io.h:44

Botan::TLS::Handshake_IO::send
virtual std::vector< uint8_t > send(const Handshake_Message &msg)=0

Botan::TLS
Definition asio_context.cpp:17

Botan::TLS::Connection_Side
Connection_Side
Definition tls_magic.h:43

Botan::make_uint32
constexpr uint32_t make_uint32(uint8_t i0, uint8_t i1, uint8_t i2, uint8_t i3)
Definition loadstor.h:100

Botan::get_byte_var
constexpr uint8_t get_byte_var(size_t byte_num, T input)
Definition loadstor.h:65