Botan  2.11.0
Crypto and TLS for C++11
msg_cert_status.cpp
Go to the documentation of this file.
1 /*
2 * Certificate Status
3 * (C) 2016 Jack Lloyd
4 *
5 * Botan is released under the Simplified BSD License (see license.txt)
6 */
7 
8 #include <botan/tls_messages.h>
9 #include <botan/tls_extensions.h>
10 #include <botan/internal/tls_reader.h>
11 #include <botan/internal/tls_handshake_io.h>
12 #include <botan/internal/tls_handshake_hash.h>
13 #include <botan/der_enc.h>
14 #include <botan/ber_dec.h>
15 
16 namespace Botan {
17 
18 namespace TLS {
19 
20 Certificate_Status::Certificate_Status(const std::vector<uint8_t>& buf)
21  {
22  if(buf.size() < 5)
23  throw Decoding_Error("Invalid Certificate_Status message: too small");
24 
25  if(buf[0] != 1) // not OCSP
26  throw Decoding_Error("Unexpected Certificate_Status message: unexpected response type");
27 
28  size_t len = make_uint32(0, buf[1], buf[2], buf[3]);
29 
30  // Verify the redundant length field...
31  if(buf.size() != len + 4)
32  throw Decoding_Error("Invalid Certificate_Status: invalid length field");
33 
34  m_response.assign(buf.begin() + 4, buf.end());
35  }
36 
37 Certificate_Status::Certificate_Status(Handshake_IO& io,
38  Handshake_Hash& hash,
39  std::shared_ptr<const OCSP::Response> ocsp) :
40  m_response(ocsp->raw_bits())
41  {
42  hash.update(io.send(*this));
43  }
44 
45 Certificate_Status::Certificate_Status(Handshake_IO& io,
46  Handshake_Hash& hash,
47  const std::vector<uint8_t>& raw_response_bytes) :
48  m_response(raw_response_bytes)
49  {
50  hash.update(io.send(*this));
51  }
52 
53 std::vector<uint8_t> Certificate_Status::serialize() const
54  {
55  if(m_response.size() > 0xFFFFFF) // unlikely
56  throw Encoding_Error("OCSP response too long to encode in TLS");
57 
58  const uint32_t response_len = static_cast<uint32_t>(m_response.size());
59 
60  std::vector<uint8_t> buf;
61  buf.push_back(1); // type OCSP
62  for(size_t i = 1; i < 4; ++i)
63  buf.push_back(get_byte(i, response_len));
64 
65  buf += m_response;
66  return buf;
67  }
68 
69 }
70 
71 }
Botan::TLS::Handshake_IO::send
virtual std::vector< uint8_t > send(const Handshake_Message &msg)=0
Botan::TLS::Certificate_Status::Certificate_Status
Certificate_Status(const std::vector< uint8_t > &buf)
Definition: msg_cert_status.cpp:20
Botan::get_byte
constexpr uint8_t get_byte(size_t byte_num, T input)
Definition: loadstor.h:39
Botan::TLS::Handshake_Hash
Definition: tls_handshake_hash.h:21
Botan::make_uint32
constexpr uint32_t make_uint32(uint8_t i0, uint8_t i1, uint8_t i2, uint8_t i3)
Definition: loadstor.h:65
Botan::Decoding_Error
Definition: exceptn.h:197
Botan::TLS::Handshake_IO
Definition: tls_handshake_io.h:29
Botan
Definition: alg_id.cpp:13
Botan::Encoding_Error
Definition: exceptn.h:182
hash
MechanismType hash
Definition: p11_mechanism.cpp:64
Generated by   doxygen 1.8.14