Botan 3.11.0
Crypto and TLS for C&
tls_extensions_12.h
Go to the documentation of this file.
1/*
2* TLS 1.2 Specific Extensions
3* (C) 2011,2012,2016,2018,2019 Jack Lloyd
4* (C) 2016 Juraj Somorovsky
5* (C) 2016 Matthias Gierlings
6* (C) 2021 Elektrobit Automotive GmbH
7* (C) 2022 René Meusel, Hannes Rantzsch - neXenio GmbH
8* (C) 2023 Fabian Albert, René Meusel - Rohde & Schwarz Cybersecurity
9* (C) 2026 René Meusel - Rohde & Schwarz Cybersecurity
10*
11* Botan is released under the Simplified BSD License (see license.txt)
12*/
13
14#ifndef BOTAN_TLS_EXTENSIONS_12_H_
15#define BOTAN_TLS_EXTENSIONS_12_H_
16
17#include <botan/tls_extensions.h>
18#include <botan/tls_session.h>
19
20#include <vector>
21
22namespace Botan::TLS {
23
24class TLS_Data_Reader;
25
26/**
27* Renegotiation Indication Extension (RFC 5746)
28*/
29class BOTAN_UNSTABLE_API Renegotiation_Extension final : public Extension {
30 public:
31 static Extension_Code static_type() { return Extension_Code::SafeRenegotiation; }
32
33 Extension_Code type() const override { return static_type(); }
34
35 Renegotiation_Extension() = default;
36
37 explicit Renegotiation_Extension(const std::vector<uint8_t>& bits) : m_reneg_data(bits) {}
38
39 Renegotiation_Extension(TLS_Data_Reader& reader, uint16_t extension_size);
40
41 const std::vector<uint8_t>& renegotiation_info() const { return m_reneg_data; }
42
43 std::vector<uint8_t> serialize(Connection_Side whoami) const override;
44
45 bool empty() const override { return false; } // always send this
46
47 private:
48 std::vector<uint8_t> m_reneg_data;
49};
50
51/**
52* Session Ticket Extension (RFC 5077)
53*/
54class BOTAN_UNSTABLE_API Session_Ticket_Extension final : public Extension {
55 public:
56 static Extension_Code static_type() { return Extension_Code::SessionTicket; }
57
58 Extension_Code type() const override { return static_type(); }
59
60 /**
61 * @return contents of the session ticket
62 */
63 const Session_Ticket& contents() const { return m_ticket; }
64
65 /**
66 * Create empty extension, used by both client and server
67 */
68 Session_Ticket_Extension() = default;
69
70 /**
71 * Extension with ticket, used by client
72 */
73 explicit Session_Ticket_Extension(Session_Ticket session_ticket) : m_ticket(std::move(session_ticket)) {}
74
75 /**
76 * Deserialize a session ticket
77 */
78 Session_Ticket_Extension(TLS_Data_Reader& reader, uint16_t extension_size);
79
80 std::vector<uint8_t> serialize(Connection_Side /*whoami*/) const override { return m_ticket.get(); }
81
82 bool empty() const override { return false; }
83
84 private:
85 Session_Ticket m_ticket;
86};
87
88/**
89* Supported Point Formats Extension (RFC 4492)
90*/
91class BOTAN_UNSTABLE_API Supported_Point_Formats final : public Extension {
92 public:
93 enum ECPointFormat : uint8_t /* NOLINT(*-use-enum-class) */ {
94 UNCOMPRESSED = 0,
95 ANSIX962_COMPRESSED_PRIME = 1,
96 ANSIX962_COMPRESSED_CHAR2 = 2, // don't support these curves
97 };
98
99 static Extension_Code static_type() { return Extension_Code::EcPointFormats; }
100
101 Extension_Code type() const override { return static_type(); }
102
103 std::vector<uint8_t> serialize(Connection_Side whoami) const override;
104
105 explicit Supported_Point_Formats(bool prefer_compressed) : m_prefers_compressed(prefer_compressed) {}
106
107 Supported_Point_Formats(TLS_Data_Reader& reader, uint16_t extension_size);
108
109 bool empty() const override { return false; }
110
111 bool prefers_compressed() const { return m_prefers_compressed; }
112
113 private:
114 bool m_prefers_compressed = false;
115};
116
117/**
118* Extended Master Secret Extension (RFC 7627)
119*/
120class BOTAN_UNSTABLE_API Extended_Master_Secret final : public Extension {
121 public:
122 static Extension_Code static_type() { return Extension_Code::ExtendedMasterSecret; }
123
124 Extension_Code type() const override { return static_type(); }
125
126 std::vector<uint8_t> serialize(Connection_Side whoami) const override;
127
128 bool empty() const override { return false; }
129
130 Extended_Master_Secret() = default;
131
132 Extended_Master_Secret(TLS_Data_Reader& reader, uint16_t extension_size);
133};
134
135/**
136* Encrypt-then-MAC Extension (RFC 7366)
137*/
138class BOTAN_UNSTABLE_API Encrypt_then_MAC final : public Extension {
139 public:
140 static Extension_Code static_type() { return Extension_Code::EncryptThenMac; }
141
142 Extension_Code type() const override { return static_type(); }
143
144 std::vector<uint8_t> serialize(Connection_Side whoami) const override;
145
146 bool empty() const override { return false; }
147
148 Encrypt_then_MAC() = default;
149
150 Encrypt_then_MAC(TLS_Data_Reader& reader, uint16_t extension_size);
151};
152
153} // namespace Botan::TLS
154
155#endif
BOTAN_UNSTABLE_API
#define BOTAN_UNSTABLE_API
Definition api.h:34
Botan::TLS::Encrypt_then_MAC::type
Extension_Code type() const override
Definition tls_extensions_12.h:142
Botan::TLS::Encrypt_then_MAC::Encrypt_then_MAC
Encrypt_then_MAC()=default
Botan::TLS::Encrypt_then_MAC::static_type
static Extension_Code static_type()
Definition tls_extensions_12.h:140
Botan::TLS::Encrypt_then_MAC::empty
bool empty() const override
Definition tls_extensions_12.h:146
Botan::TLS::Extended_Master_Secret::static_type
static Extension_Code static_type()
Definition tls_extensions_12.h:122
Botan::TLS::Extended_Master_Secret::type
Extension_Code type() const override
Definition tls_extensions_12.h:124
Botan::TLS::Extended_Master_Secret::Extended_Master_Secret
Extended_Master_Secret()=default
Botan::TLS::Extended_Master_Secret::empty
bool empty() const override
Definition tls_extensions_12.h:128
Botan::TLS::Renegotiation_Extension
Definition tls_extensions_12.h:29
Botan::TLS::Renegotiation_Extension::static_type
static Extension_Code static_type()
Definition tls_extensions_12.h:31
Botan::TLS::Renegotiation_Extension::Renegotiation_Extension
Renegotiation_Extension(const std::vector< uint8_t > &bits)
Definition tls_extensions_12.h:37
Botan::TLS::Renegotiation_Extension::empty
bool empty() const override
Definition tls_extensions_12.h:45
Botan::TLS::Renegotiation_Extension::type
Extension_Code type() const override
Definition tls_extensions_12.h:33
Botan::TLS::Renegotiation_Extension::Renegotiation_Extension
Renegotiation_Extension()=default
Botan::TLS::Renegotiation_Extension::renegotiation_info
const std::vector< uint8_t > & renegotiation_info() const
Definition tls_extensions_12.h:41
Botan::TLS::Session_Ticket_Extension
Definition tls_extensions_12.h:54
Botan::TLS::Session_Ticket_Extension::Session_Ticket_Extension
Session_Ticket_Extension()=default
Botan::TLS::Session_Ticket_Extension::static_type
static Extension_Code static_type()
Definition tls_extensions_12.h:56
Botan::TLS::Session_Ticket_Extension::type
Extension_Code type() const override
Definition tls_extensions_12.h:58
Botan::TLS::Session_Ticket_Extension::Session_Ticket_Extension
Session_Ticket_Extension(Session_Ticket session_ticket)
Definition tls_extensions_12.h:73
Botan::TLS::Session_Ticket_Extension::serialize
std::vector< uint8_t > serialize(Connection_Side) const override
Definition tls_extensions_12.h:80
Botan::TLS::Session_Ticket_Extension::empty
bool empty() const override
Definition tls_extensions_12.h:82
Botan::TLS::Session_Ticket_Extension::contents
const Session_Ticket & contents() const
Definition tls_extensions_12.h:63
Botan::TLS::Supported_Point_Formats
Definition tls_extensions_12.h:91
Botan::TLS::Supported_Point_Formats::prefers_compressed
bool prefers_compressed() const
Definition tls_extensions_12.h:111
Botan::TLS::Supported_Point_Formats::Supported_Point_Formats
Supported_Point_Formats(bool prefer_compressed)
Definition tls_extensions_12.h:105
Botan::TLS::Supported_Point_Formats::empty
bool empty() const override
Definition tls_extensions_12.h:109
Botan::TLS::Supported_Point_Formats::type
Extension_Code type() const override
Definition tls_extensions_12.h:101
Botan::TLS::Supported_Point_Formats::static_type
static Extension_Code static_type()
Definition tls_extensions_12.h:99
Botan::TLS::Supported_Point_Formats::ECPointFormat
ECPointFormat
Definition tls_extensions_12.h:93
Botan::TLS::Supported_Point_Formats::UNCOMPRESSED
@ UNCOMPRESSED
Definition tls_extensions_12.h:94
Botan::TLS::Supported_Point_Formats::ANSIX962_COMPRESSED_CHAR2
@ ANSIX962_COMPRESSED_CHAR2
Definition tls_extensions_12.h:96
Botan::TLS::Supported_Point_Formats::ANSIX962_COMPRESSED_PRIME
@ ANSIX962_COMPRESSED_PRIME
Definition tls_extensions_12.h:95
Botan::TLS::TLS_Data_Reader
Definition tls_reader.h:24
Botan::TLS::Session_Ticket
Strong< std::vector< uint8_t >, struct Session_Ticket_ > Session_Ticket
holds a TLS 1.2 session ticket for stateless resumption
Definition tls_session_id.h:25
Generated by doxygen 1.15.0