doxygen/tls__ciphersuite_8cpp_source.html

 /*
 * TLS Cipher Suite
 * (C) 2004-2010,2012,2013 Jack Lloyd
 *
 * Botan is released under the Simplified BSD License (see license.txt)
 */

 #include <botan/tls_ciphersuite.h>
 #include <botan/exceptn.h>
 #include <botan/parsing.h>
 #include <botan/block_cipher.h>
 #include <botan/stream_cipher.h>
 #include <botan/hash.h>
 #include <algorithm>

 namespace Botan {

 namespace TLS {

 size_t Ciphersuite::nonce_bytes_from_handshake() const
    {
    switch(m_nonce_format)
       {
       case Nonce_Format::CBC_MODE:
          {
          if(cipher_algo() == "3DES")
             return 8;
          else
             return 16;
          }
       case Nonce_Format::AEAD_IMPLICIT_4:
          return 4;
       case Nonce_Format::AEAD_XOR_12:
          return 12;
       }

    throw Invalid_State("In Ciphersuite::nonce_bytes_from_handshake invalid enum value");
    }

 bool Ciphersuite::is_scsv(uint16_t suite)
    {
    // TODO: derive from IANA file in script
    return (suite == 0x00FF || suite == 0x5600);
    }

 bool Ciphersuite::psk_ciphersuite() const
    {
    return kex_method() == Kex_Algo::PSK ||
           kex_method() == Kex_Algo::DHE_PSK ||
           kex_method() == Kex_Algo::ECDHE_PSK;
    }

 bool Ciphersuite::ecc_ciphersuite() const
    {
    return kex_method() == Kex_Algo::ECDH ||
           kex_method() == Kex_Algo::ECDHE_PSK ||
           auth_method() == Auth_Method::ECDSA;
    }

 bool Ciphersuite::cbc_ciphersuite() const
    {
    return (mac_algo() != "AEAD");
    }

 bool Ciphersuite::signature_used() const
    {
    return auth_method() != Auth_Method::ANONYMOUS &&
           auth_method() != Auth_Method::IMPLICIT;
    }

 Ciphersuite Ciphersuite::by_id(uint16_t suite)
    {
    const std::vector<Ciphersuite>& all_suites = all_known_ciphersuites();
    auto s = std::lower_bound(all_suites.begin(), all_suites.end(), suite);

    if(s != all_suites.end() && s->ciphersuite_code() == suite)
       {
       return *s;
       }

    return Ciphersuite(); // some unknown ciphersuite
    }

 namespace {

 bool have_hash(const std::string& prf)
    {
    return (HashFunction::providers(prf).size() > 0);
    }

 bool have_cipher(const std::string& cipher)
    {
    return (BlockCipher::providers(cipher).size() > 0) ||
       (StreamCipher::providers(cipher).size() > 0);
    }

 }

 bool Ciphersuite::is_usable() const
    {
    if(!m_cipher_keylen) // uninitialized object
       return false;

    if(!have_hash(prf_algo()))
       return false;

 #if !defined(BOTAN_HAS_TLS_CBC)
    if(cbc_ciphersuite())
       return false;
 #endif

    if(mac_algo() == "AEAD")
       {
       if(cipher_algo() == "ChaCha20Poly1305")
          {
 #if !defined(BOTAN_HAS_AEAD_CHACHA20_POLY1305)
          return false;
 #endif
          }
       else
          {
          auto cipher_and_mode = split_on(cipher_algo(), '/');
          BOTAN_ASSERT(cipher_and_mode.size() == 2, "Expected format for AEAD algo");
          if(!have_cipher(cipher_and_mode[0]))
             return false;

          const auto mode = cipher_and_mode[1];

 #if !defined(BOTAN_HAS_AEAD_CCM)
          if(mode == "CCM" || mode == "CCM-8")
             return false;
 #endif

 #if !defined(BOTAN_HAS_AEAD_GCM)
          if(mode == "GCM")
             return false;
 #endif

 #if !defined(BOTAN_HAS_AEAD_OCB)
          if(mode == "OCB(12)" || mode == "OCB")
             return false;
 #endif
          }
       }
    else
       {
       // Old non-AEAD schemes
       if(!have_cipher(cipher_algo()))
          return false;
       if(!have_hash(mac_algo())) // HMAC
          return false;
       }

    if(kex_method() == Kex_Algo::SRP_SHA)
       {
 #if !defined(BOTAN_HAS_SRP6)
       return false;
 #endif
       }
    else if(kex_method() == Kex_Algo::ECDH || kex_method() == Kex_Algo::ECDHE_PSK)
       {
 #if !defined(BOTAN_HAS_ECDH)
       return false;
 #endif
       }
    else if(kex_method() == Kex_Algo::DH || kex_method() == Kex_Algo::DHE_PSK)
       {
 #if !defined(BOTAN_HAS_DIFFIE_HELLMAN)
       return false;
 #endif
       }
    else if(kex_method() == Kex_Algo::CECPQ1)
       {
 #if !defined(BOTAN_HAS_CECPQ1)
       return false;
 #endif
       }

    if(auth_method() == Auth_Method::DSA)
       {
 #if !defined(BOTAN_HAS_DSA)
       return false;
 #endif
       }
    else if(auth_method() == Auth_Method::ECDSA)
       {
 #if !defined(BOTAN_HAS_ECDSA)
       return false;
 #endif
       }
    else if(auth_method() == Auth_Method::RSA)
       {
 #if !defined(BOTAN_HAS_RSA)
       return false;
 #endif
       }

    return true;
    }

 }

 }

Botan::TLS::Ciphersuite::mac_algo
std::string mac_algo() const
Definition: tls_ciphersuite.h:95

Botan::TLS::Ciphersuite::ecc_ciphersuite
bool ecc_ciphersuite() const
Definition: tls_ciphersuite.cpp:53

Botan::TLS::Kex_Algo::CECPQ1

Botan::TLS::Auth_Method::ECDSA

Botan::TLS::Auth_Method::RSA

Botan::TLS::Ciphersuite::prf_algo
std::string prf_algo() const
Definition: tls_ciphersuite.h:97

Botan::split_on
std::vector< std::string > split_on(const std::string &str, char delim)
Definition: parsing.cpp:144

Botan::TLS::Ciphersuite::auth_method
Auth_Method auth_method() const
Definition: tls_ciphersuite.h:85

Botan::TLS::Ciphersuite::is_scsv
static bool is_scsv(uint16_t suite)
Definition: tls_ciphersuite.cpp:40

Botan::TLS::Ciphersuite::signature_used
bool signature_used() const
Definition: tls_ciphersuite.cpp:65

Botan::TLS::Ciphersuite::kex_method
Kex_Algo kex_method() const
Definition: tls_ciphersuite.h:78

Botan::TLS::Auth_Method::ANONYMOUS

Botan::TLS::Ciphersuite
Definition: tls_ciphersuite.h:23

Botan::TLS::Ciphersuite::psk_ciphersuite
bool psk_ciphersuite() const
Definition: tls_ciphersuite.cpp:46

Botan::TLS::Auth_Method::DSA

BOTAN_ASSERT
#define BOTAN_ASSERT(expr, assertion_made)
Definition: assert.h:55

Botan::BlockCipher::providers
static std::vector< std::string > providers(const std::string &algo_spec)
Definition: block_cipher.cpp:358

Botan::TLS::Kex_Algo::DHE_PSK

Botan::TLS::Kex_Algo::ECDHE_PSK

Botan::TLS::Kex_Algo::PSK

Botan::TLS::Auth_Method::IMPLICIT

Botan::TLS::Nonce_Format::CBC_MODE

Botan::TLS::Ciphersuite::nonce_bytes_from_handshake
size_t nonce_bytes_from_handshake() const
Definition: tls_ciphersuite.cpp:20

Botan::HashFunction::providers
static std::vector< std::string > providers(const std::string &algo_spec)
Definition: hash.cpp:369

Botan
Definition: alg_id.cpp:13

Botan::StreamCipher::providers
static std::vector< std::string > providers(const std::string &algo_spec)
Definition: stream_cipher.cpp:144

Botan::TLS::Ciphersuite::Ciphersuite
Ciphersuite()=default

Botan::Invalid_State
Definition: exceptn.h:60

Botan::TLS::Ciphersuite::by_id
static Ciphersuite by_id(uint16_t suite)
Definition: tls_ciphersuite.cpp:71

Botan::TLS::Ciphersuite::cbc_ciphersuite
bool cbc_ciphersuite() const
Definition: tls_ciphersuite.cpp:60

Botan::TLS::Kex_Algo::DH

Botan::TLS::Nonce_Format::AEAD_XOR_12

Botan::TLS::Kex_Algo::SRP_SHA

Botan::TLS::Ciphersuite::cipher_algo
std::string cipher_algo() const
Definition: tls_ciphersuite.h:90

Botan::TLS::Kex_Algo::ECDH

Botan::TLS::Ciphersuite::all_known_ciphersuites
static const std::vector< Ciphersuite > & all_known_ciphersuites()
Definition: tls_suite_info.cpp:18

Botan::TLS::Nonce_Format::AEAD_IMPLICIT_4