doxygen/tls__handshake__state_8h_source.html

/*

* TLS Handshake State

* (C) 2004-2006,2011,2012 Jack Lloyd

*     2017 Harry Reimann, Rohde & Schwarz Cybersecurity

*

* Botan is released under the Simplified BSD License (see license.txt)

*/


#ifndef BOTAN_TLS_HANDSHAKE_STATE_H_

#define BOTAN_TLS_HANDSHAKE_STATE_H_


#include <botan/internal/tls_handshake_hash.h>

#include <botan/internal/tls_handshake_io.h>

#include <botan/internal/tls_handshake_transitions.h>

#include <botan/internal/tls_session_key.h>

#include <botan/tls_ciphersuite.h>

#include <botan/tls_exceptn.h>

#include <botan/tls_handshake_msg.h>

#include <botan/tls_callbacks.h>

#include <botan/pk_keys.h>

#include <botan/pubkey.h>

#include <functional>

#include <optional>


namespace Botan {


class KDF;


namespace TLS {


class Callbacks;

class Policy;

class Signature_Scheme;


class Hello_Verify_Request;

class Client_Hello_12;

class Server_Hello_12;

class Certificate_12;

class Certificate_Status;

class Server_Key_Exchange;

class Certificate_Request_12;

class Server_Hello_Done;

class Client_Key_Exchange;

class Certificate_Verify_12;

class New_Session_Ticket_12;

class Finished_12;


/**

* SSL/TLS Handshake State

*

* This is a data holder object for all state aggregated during the handshake,

* both on client and server side and across protocol versions.

* It does not implement any logic and offers no guarantees regarding state

* consistency and legal TLS state transitions.

*

* TODO: currently it implements some logic for TLS 1.2, which should be removed

* TODO: investigate moving the handshake_io to the channel

*/

class Handshake_State

   {

   public:

      Handshake_State(std::unique_ptr<Handshake_IO> io, Callbacks& callbacks);

      virtual ~Handshake_State();


      Handshake_State(const Handshake_State&) = delete;

      Handshake_State& operator=(const Handshake_State&) = delete;


      Handshake_IO& handshake_io() { return *m_handshake_io; }


      /**

      * Return true iff we have received a particular message already

      * @param msg_type the message type

      */

      bool received_handshake_msg(Handshake_Type msg_type) const;


      /**

      * Confirm that we were expecting this message type

      * @param msg_type the message type

      */

      void confirm_transition_to(Handshake_Type msg_type);


      /**

      * Record that we are expecting a particular message type next

      * @param msg_type the message type

      */

      void set_expected_next(Handshake_Type msg_type);


      std::pair<Handshake_Type, std::vector<uint8_t>>

         get_next_handshake_msg();


      std::vector<uint8_t> session_ticket() const;


      std::pair<std::string, Signature_Format>

         parse_sig_format(const Public_Key& key,

                          Signature_Scheme scheme,

                          const std::vector<Signature_Scheme>& offered_schemes,

                          bool for_client_auth,

                          const Policy& policy) const;


      std::pair<std::string, Signature_Format>

         choose_sig_format(const Private_Key& key,

                           Signature_Scheme& scheme,

                           bool for_client_auth,

                           const Policy& policy) const;


      std::unique_ptr<KDF> protocol_specific_prf() const;


      Protocol_Version version() const { return m_version; }


      void set_version(const Protocol_Version& version);


      void hello_verify_request(const Hello_Verify_Request& hello_verify);


      // TODO: take unique_ptr instead of raw pointers for all of these, as

      // we're taking the ownership

      void client_hello(Client_Hello_12* client_hello);

      void server_hello(Server_Hello_12* server_hello);

      void server_cert_status(Certificate_Status* server_cert_status);

      void server_kex(Server_Key_Exchange* server_kex);

      void cert_req(Certificate_Request_12* cert_req);

      void server_hello_done(Server_Hello_Done* server_hello_done);

      void client_kex(Client_Key_Exchange* client_kex);


      void client_certs(Certificate_12* client_certs);

      void server_certs(Certificate_12* server_certs);


      void client_verify(Certificate_Verify_12* client_verify);

      void server_verify(Certificate_Verify_12* server_verify);


      void server_finished(Finished_12* server_finished);

      void client_finished(Finished_12* client_finished);


      void new_session_ticket(New_Session_Ticket_12* new_session_ticket);


      const Client_Hello_12* client_hello() const

         { return m_client_hello.get(); }


      const Server_Hello_12* server_hello() const

         { return m_server_hello.get(); }


      const Certificate_12* server_certs() const

         { return m_server_certs.get(); }


      const Server_Key_Exchange* server_kex() const

         { return m_server_kex.get(); }


      const Certificate_Request_12* cert_req() const

         { return m_cert_req.get(); }


      const Server_Hello_Done* server_hello_done() const

         { return m_server_hello_done.get(); }


      const Certificate_12* client_certs() const

         { return m_client_certs.get(); }


      const Client_Key_Exchange* client_kex() const

         { return m_client_kex.get(); }


      const Certificate_Verify_12* client_verify() const

         { return m_client_verify.get(); }


      const Certificate_Verify_12* server_verify() const

         { return m_server_verify.get(); }


      const Certificate_Status* server_cert_status() const

         { return m_server_cert_status.get(); }


      const New_Session_Ticket_12* new_session_ticket() const

         { return m_new_session_ticket.get(); }


      const Finished_12* server_finished() const

         { return m_server_finished.get(); }


      const Finished_12* client_finished() const

         { return m_client_finished.get(); }


      const Ciphersuite& ciphersuite() const;


      const Session_Keys& session_keys() const { return m_session_keys; }


      Callbacks& callbacks() const { return m_callbacks; }


      void compute_session_keys();


      void compute_session_keys(const secure_vector<uint8_t>& resume_master_secret);


      Handshake_Hash& hash() { return m_handshake_hash; }


      const Handshake_Hash& hash() const { return m_handshake_hash; }


      void note_message(const Handshake_Message& msg);

   private:


      Callbacks& m_callbacks;


      std::unique_ptr<Handshake_IO> m_handshake_io;


      Handshake_Transitions m_transitions;

      Protocol_Version m_version;

      std::optional<Ciphersuite> m_ciphersuite;

      Session_Keys m_session_keys;

      Handshake_Hash m_handshake_hash;


      std::unique_ptr<Client_Hello_12> m_client_hello;

      std::unique_ptr<Server_Hello_12> m_server_hello;


      std::unique_ptr<Certificate_12> m_server_certs;

      std::unique_ptr<Certificate_Status> m_server_cert_status;

      std::unique_ptr<Server_Key_Exchange> m_server_kex;

      std::unique_ptr<Certificate_Request_12> m_cert_req;

      std::unique_ptr<Server_Hello_Done> m_server_hello_done;

      std::unique_ptr<Certificate_12> m_client_certs;

      std::unique_ptr<Client_Key_Exchange> m_client_kex;

      std::unique_ptr<Certificate_Verify_12> m_client_verify;

      std::unique_ptr<Certificate_Verify_12> m_server_verify;

      std::unique_ptr<New_Session_Ticket_12> m_new_session_ticket;

      std::unique_ptr<Finished_12> m_server_finished;

      std::unique_ptr<Finished_12> m_client_finished;

   };


}


}


#endif

Botan::Private_Key
Definition: pk_keys.h:181

Botan::Public_Key
Definition: pk_keys.h:29

Botan::TLS::Callbacks
Definition: tls_callbacks.h:43

Botan::TLS::Certificate_12
Definition: tls_messages.h:468

Botan::TLS::Certificate_Request_12
Definition: tls_messages.h:594

Botan::TLS::Certificate_Status
Definition: tls_messages.h:564

Botan::TLS::Certificate_Verify_12
Definition: tls_messages.h:663

Botan::TLS::Ciphersuite
Definition: tls_ciphersuite.h:26

Botan::TLS::Client_Hello_12
Definition: tls_messages.h:151

Botan::TLS::Client_Key_Exchange
Definition: tls_messages.h:434

Botan::TLS::Finished_12
Definition: tls_messages.h:739

Botan::TLS::Handshake_Hash
Definition: tls_handshake_hash.h:22

Botan::TLS::Handshake_IO
Definition: tls_handshake_io.h:46

Botan::TLS::Handshake_Message
Definition: tls_handshake_msg.h:27

Botan::TLS::Handshake_State
Definition: tls_handshake_state.h:60

Botan::TLS::Handshake_State::parse_sig_format
std::pair< std::string, Signature_Format > parse_sig_format(const Public_Key &key, Signature_Scheme scheme, const std::vector< Signature_Scheme > &offered_schemes, bool for_client_auth, const Policy &policy) const
Definition: tls_handshake_state.cpp:343

Botan::TLS::Handshake_State::get_next_handshake_msg
std::pair< Handshake_Type, std::vector< uint8_t > > get_next_handshake_msg()
Definition: tls_handshake_state.cpp:253

Botan::TLS::Handshake_State::server_hello_done
const Server_Hello_Done * server_hello_done() const
Definition: tls_handshake_state.h:150

Botan::TLS::Handshake_State::hello_verify_request
void hello_verify_request(const Hello_Verify_Request &hello_verify)
Definition: tls_handshake_state.cpp:110

Botan::TLS::Handshake_State::set_expected_next
void set_expected_next(Handshake_Type msg_type)
Definition: tls_handshake_state.cpp:242

Botan::TLS::Handshake_State::note_message
void note_message(const Handshake_Message &msg)
Definition: tls_handshake_state.cpp:105

Botan::TLS::Handshake_State::server_kex
const Server_Key_Exchange * server_kex() const
Definition: tls_handshake_state.h:144

Botan::TLS::Handshake_State::~Handshake_State
virtual ~Handshake_State()

Botan::TLS::Handshake_State::server_cert_status
const Certificate_Status * server_cert_status() const
Definition: tls_handshake_state.h:165

Botan::TLS::Handshake_State::server_verify
const Certificate_Verify_12 * server_verify() const
Definition: tls_handshake_state.h:162

Botan::TLS::Handshake_State::Handshake_State
Handshake_State(std::unique_ptr< Handshake_IO > io, Callbacks &callbacks)
Definition: tls_handshake_state.cpp:98

Botan::TLS::Handshake_State::callbacks
Callbacks & callbacks() const
Definition: tls_handshake_state.h:181

Botan::TLS::Handshake_State::handshake_io
Handshake_IO & handshake_io()
Definition: tls_handshake_state.h:68

Botan::TLS::Handshake_State::client_verify
const Certificate_Verify_12 * client_verify() const
Definition: tls_handshake_state.h:159

Botan::TLS::Handshake_State::server_finished
const Finished_12 * server_finished() const
Definition: tls_handshake_state.h:171

Botan::TLS::Handshake_State::operator=
Handshake_State & operator=(const Handshake_State &)=delete

Botan::TLS::Handshake_State::session_ticket
std::vector< uint8_t > session_ticket() const
Definition: tls_handshake_state.cpp:258

Botan::TLS::Handshake_State::session_keys
const Session_Keys & session_keys() const
Definition: tls_handshake_state.h:179

Botan::TLS::Handshake_State::client_hello
const Client_Hello_12 * client_hello() const
Definition: tls_handshake_state.h:135

Botan::TLS::Handshake_State::Handshake_State
Handshake_State(const Handshake_State &)=delete

Botan::TLS::Handshake_State::client_kex
const Client_Key_Exchange * client_kex() const
Definition: tls_handshake_state.h:156

Botan::TLS::Handshake_State::hash
const Handshake_Hash & hash() const
Definition: tls_handshake_state.h:189

Botan::TLS::Handshake_State::confirm_transition_to
void confirm_transition_to(Handshake_Type msg_type)
Definition: tls_handshake_state.cpp:237

Botan::TLS::Handshake_State::set_version
void set_version(const Protocol_Version &version)
Definition: tls_handshake_state.cpp:222

Botan::TLS::Handshake_State::server_certs
const Certificate_12 * server_certs() const
Definition: tls_handshake_state.h:141

Botan::TLS::Handshake_State::client_certs
const Certificate_12 * client_certs() const
Definition: tls_handshake_state.h:153

Botan::TLS::Handshake_State::client_finished
const Finished_12 * client_finished() const
Definition: tls_handshake_state.h:174

Botan::TLS::Handshake_State::cert_req
const Certificate_Request_12 * cert_req() const
Definition: tls_handshake_state.h:147

Botan::TLS::Handshake_State::compute_session_keys
void compute_session_keys()
Definition: tls_handshake_state.cpp:227

Botan::TLS::Handshake_State::ciphersuite
const Ciphersuite & ciphersuite() const
Definition: tls_handshake_state.cpp:213

Botan::TLS::Handshake_State::hash
Handshake_Hash & hash()
Definition: tls_handshake_state.h:187

Botan::TLS::Handshake_State::server_hello
const Server_Hello_12 * server_hello() const
Definition: tls_handshake_state.h:138

Botan::TLS::Handshake_State::received_handshake_msg
bool received_handshake_msg(Handshake_Type msg_type) const
Definition: tls_handshake_state.cpp:247

Botan::TLS::Handshake_State::protocol_specific_prf
std::unique_ptr< KDF > protocol_specific_prf() const
Definition: tls_handshake_state.cpp:266

Botan::TLS::Handshake_State::new_session_ticket
const New_Session_Ticket_12 * new_session_ticket() const
Definition: tls_handshake_state.h:168

Botan::TLS::Handshake_State::choose_sig_format
std::pair< std::string, Signature_Format > choose_sig_format(const Private_Key &key, Signature_Scheme &scheme, bool for_client_auth, const Policy &policy) const
Definition: tls_handshake_state.cpp:277

Botan::TLS::Handshake_State::version
Protocol_Version version() const
Definition: tls_handshake_state.h:108

Botan::TLS::Handshake_Transitions
Definition: tls_handshake_transitions.h:25

Botan::TLS::Hello_Verify_Request
Definition: tls_messages.h:57

Botan::TLS::New_Session_Ticket_12
Definition: tls_messages.h:849

Botan::TLS::Policy
Definition: tls_policy.h:30

Botan::TLS::Protocol_Version
Definition: tls_version.h:24

Botan::TLS::Server_Hello_12
Definition: tls_messages.h:286

Botan::TLS::Server_Hello_Done
Definition: tls_messages.h:834

Botan::TLS::Server_Key_Exchange
Definition: tls_messages.h:781

Botan::TLS::Session_Keys
Definition: tls_session_key.h:24

Botan::TLS::Signature_Scheme
Definition: tls_signature_scheme.h:24

Botan::TLS::Handshake_Type
Handshake_Type
Definition: tls_magic.h:63

Botan
Definition: alg_id.cpp:13

Botan::secure_vector
std::vector< T, secure_allocator< T > > secure_vector
Definition: secmem.h:65