Botan 3.11.0
Crypto and TLS for C&
tls_messages.h
Go to the documentation of this file.
1/*
2* TLS Messages
3* (C) 2004-2011,2015 Jack Lloyd
4* 2016 Matthias Gierlings
5* 2021 Elektrobit Automotive GmbH
6* 2022 René Meusel, Hannes Rantzsch - neXenio GmbH
7*
8* Botan is released under the Simplified BSD License (see license.txt)
9*/
10
11#ifndef BOTAN_TLS_MESSAGES_H_
12#define BOTAN_TLS_MESSAGES_H_
13
14#include <botan/tls_algos.h>
15#include <botan/tls_handshake_msg.h>
16#include <botan/tls_session_id.h>
17#include <botan/tls_signature_scheme.h>
18#include <botan/tls_version.h>
19#include <memory>
20#include <set>
21#include <string>
22#include <vector>
23
24namespace Botan {
25
26class Public_Key;
27class Credentials_Manager;
28class X509_Certificate;
29class X509_DN;
30class RandomNumberGenerator;
31
32class OctetString;
33typedef OctetString SymmetricKey;
34
35namespace OCSP {
36class Response;
37}
38
39namespace TLS {
40
41enum class Extension_Code : uint16_t;
42
43class Session_Manager;
44class Extensions;
45class Handshake_IO;
46class Handshake_State;
47class Hello_Retry_Request;
48class Callbacks;
49class Cipher_State;
50class Session_with_Handle;
51class Session;
52class Policy;
53
54/**
55* DTLS Hello Verify Request
56*/
57class BOTAN_UNSTABLE_API Hello_Verify_Request final : public Handshake_Message {
58 public:
59 std::vector<uint8_t> serialize() const override;
60
61 Handshake_Type type() const override { return Handshake_Type::HelloVerifyRequest; }
62
63 const std::vector<uint8_t>& cookie() const { return m_cookie; }
64
65 explicit Hello_Verify_Request(const std::vector<uint8_t>& buf);
66
67 Hello_Verify_Request(const std::vector<uint8_t>& client_hello_bits,
68 std::string_view client_identity,
69 const SymmetricKey& secret_key);
70
71 private:
72 std::vector<uint8_t> m_cookie;
73};
74
75class Client_Hello_Internal;
76
77/**
78* Client Hello Message
79*/
80class BOTAN_UNSTABLE_API Client_Hello : public Handshake_Message {
81 public:
82 Client_Hello(const Client_Hello&) = delete;
83 Client_Hello& operator=(const Client_Hello&) = delete;
84 Client_Hello(Client_Hello&&) noexcept;
85 Client_Hello& operator=(Client_Hello&&) noexcept;
86
87 ~Client_Hello() override;
88
89 Handshake_Type type() const override;
90
91 /**
92 * Return the version indicated in the ClientHello.
93 * This may differ from the version indicated in the supported_versions extension.
94 *
95 * See RFC 8446 4.1.2:
96 * TLS 1.3, the client indicates its version preferences in the
97 * "supported_versions" extension (Section 4.2.1) and the
98 * legacy_version field MUST be set to 0x0303, which is the version
99 * number for TLS 1.2.
100 */
101 Protocol_Version legacy_version() const;
102
103 const std::vector<uint8_t>& random() const;
104
105 const Session_ID& session_id() const;
106
107 const std::vector<uint16_t>& ciphersuites() const;
108
109 bool offered_suite(uint16_t ciphersuite) const;
110
111 std::vector<Signature_Scheme> signature_schemes() const;
112 std::vector<Signature_Scheme> certificate_signature_schemes() const;
113
114 std::vector<Group_Params> supported_ecc_curves() const;
115
116 // This returns any groups in the FFDHE range
117 std::vector<Group_Params> supported_dh_groups() const;
118
119 std::vector<Protocol_Version> supported_versions() const;
120
121 std::string sni_hostname() const;
122
123 bool supports_alpn() const;
124
125 bool sent_signature_algorithms() const;
126
127 std::vector<std::string> next_protocols() const;
128
129 std::vector<uint16_t> srtp_profiles() const;
130
131 std::vector<uint8_t> serialize() const override;
132
133 const std::vector<uint8_t>& cookie() const;
134
135 std::vector<uint8_t> cookie_input_data() const;
136
137 std::set<Extension_Code> extension_types() const;
138
139 const Extensions& extensions() const;
140
141 protected:
142 Client_Hello();
143 explicit Client_Hello(std::unique_ptr<Client_Hello_Internal> data);
144
145 const std::vector<uint8_t>& compression_methods() const;
146
147 protected:
148 std::unique_ptr<Client_Hello_Internal> m_data; // NOLINT(*non-private-member-variable*)
149};
150
151/**
152 * Basic implementation of Client_Hello from TLS 1.2. The full implementation
153 * is in Client_Hello_12 in the tls12 module. This is meant to be used by the
154 * TLS 1.3 implementation to parse, validate and understand a downgrade request.
155 */
156class BOTAN_UNSTABLE_API Client_Hello_12_Shim : public Client_Hello {
157 public:
158 explicit Client_Hello_12_Shim(const std::vector<uint8_t>& buf);
159
160 protected:
161 using Client_Hello::Client_Hello;
162
163 friend class Client_Hello_13; // to allow construction by Client_Hello_13::parse()
164 explicit Client_Hello_12_Shim(std::unique_ptr<Client_Hello_Internal> data);
165};
166
167class Server_Hello_Internal;
168
169/**
170* Server Hello Message
171*/
172class BOTAN_UNSTABLE_API Server_Hello : public Handshake_Message {
173 public:
174 Server_Hello(const Server_Hello&) = delete;
175 Server_Hello& operator=(const Server_Hello&) = delete;
176 Server_Hello(Server_Hello&&) noexcept;
177 Server_Hello& operator=(Server_Hello&&) noexcept;
178
179 ~Server_Hello() override;
180
181 std::vector<uint8_t> serialize() const override;
182
183 Handshake_Type type() const override;
184
185 // methods available in both subclasses' interface
186 uint16_t ciphersuite() const;
187 const Extensions& extensions() const;
188 const Session_ID& session_id() const;
189
190 virtual Protocol_Version selected_version() const = 0;
191
192 protected:
193 explicit Server_Hello(std::unique_ptr<Server_Hello_Internal> data);
194
195 // methods used internally and potentially exposed by one of the subclasses
196 std::set<Extension_Code> extension_types() const;
197 const std::vector<uint8_t>& random() const;
198 uint8_t compression_method() const;
199 Protocol_Version legacy_version() const;
200
201 protected:
202 std::unique_ptr<Server_Hello_Internal> m_data; // NOLINT(*non-private-member-variable*)
203};
204
205/**
206 * Basic implementation of Server_Hello from TLS 1.2. The full implementation
207 * is in Server_Hello_12 in the tls12 module. This is meant to be used by the
208 * TLS 1.3 implementation to parse, validate and understand a downgrade request.
209 */
210class BOTAN_UNSTABLE_API Server_Hello_12_Shim : public Server_Hello {
211 public:
212 explicit Server_Hello_12_Shim(const std::vector<uint8_t>& buf);
213
214 protected:
215 friend class Server_Hello_13; // to allow construction by Server_Hello_13::parse()
216 explicit Server_Hello_12_Shim(std::unique_ptr<Server_Hello_Internal> data);
217
218 public:
219 /**
220 * @returns the selected version as indicated in the legacy_version field
221 */
222 Protocol_Version selected_version() const final;
223
224 /**
225 * Return desired downgrade version indicated by hello random, if any.
226 */
227 std::optional<Protocol_Version> random_signals_downgrade() const;
228};
229
230/**
231* Certificate Status (RFC 6066)
232*/
233class BOTAN_UNSTABLE_API Certificate_Status : public Handshake_Message {
234 public:
235 Handshake_Type type() const final { return Handshake_Type::CertificateStatus; }
236
237 //std::shared_ptr<const OCSP::Response> response() const { return m_response; }
238
239 const std::vector<uint8_t>& response() const { return m_response; }
240
241 explicit Certificate_Status(const std::vector<uint8_t>& buf, Connection_Side from);
242
243 explicit Certificate_Status(std::vector<uint8_t> raw_response_bytes);
244
245 std::vector<uint8_t> serialize() const final;
246
247 private:
248 std::vector<uint8_t> m_response;
249};
250
251class BOTAN_UNSTABLE_API Certificate_Verify : public Handshake_Message {
252 public:
253 Handshake_Type type() const override { return Handshake_Type::CertificateVerify; }
254
255 Signature_Scheme signature_scheme() const { return m_scheme; }
256
257 explicit Certificate_Verify(const std::vector<uint8_t>& buf);
258 Certificate_Verify() = default;
259
260 std::vector<uint8_t> serialize() const override;
261
262 protected:
263 std::vector<uint8_t> m_signature; // NOLINT(*non-private-member-variable*)
264 Signature_Scheme m_scheme; // NOLINT(*non-private-member-variable*)
265};
266
267/**
268* Finished Message
269*/
270class BOTAN_UNSTABLE_API Finished : public Handshake_Message {
271 public:
272 explicit Finished(const std::vector<uint8_t>& buf) : m_verification_data(buf) {}
273
274 Handshake_Type type() const override { return Handshake_Type::Finished; }
275
276 std::vector<uint8_t> verify_data() const { return m_verification_data; }
277
278 std::vector<uint8_t> serialize() const override { return m_verification_data; }
279
280 protected:
281 using Handshake_Message::Handshake_Message;
282 std::vector<uint8_t> m_verification_data; // NOLINT(*non-private-member-variable*)
283};
284
285} // namespace TLS
286
287} // namespace Botan
288
289#endif
BOTAN_UNSTABLE_API
#define BOTAN_UNSTABLE_API
Definition api.h:34
Botan::Credentials_Manager
Definition credentials_manager.h:40
Botan::Public_Key
Definition pk_keys.h:148
Botan::TLS::Certificate_Status
Definition tls_messages.h:233
Botan::TLS::Certificate_Status::response
const std::vector< uint8_t > & response() const
Definition tls_messages.h:239
Botan::TLS::Certificate_Status::type
Handshake_Type type() const final
Definition tls_messages.h:235
Botan::TLS::Certificate_Status::Certificate_Status
Certificate_Status(const std::vector< uint8_t > &buf, Connection_Side from)
Definition msg_cert_status.cpp:14
Botan::TLS::Certificate_Verify
Definition tls_messages.h:251
Botan::TLS::Certificate_Verify::type
Handshake_Type type() const override
Definition tls_messages.h:253
Botan::TLS::Certificate_Verify::m_scheme
Signature_Scheme m_scheme
Definition tls_messages.h:264
Botan::TLS::Certificate_Verify::Certificate_Verify
Certificate_Verify(const std::vector< uint8_t > &buf)
Definition msg_cert_verify.cpp:20
Botan::TLS::Certificate_Verify::Certificate_Verify
Certificate_Verify()=default
Botan::TLS::Certificate_Verify::serialize
std::vector< uint8_t > serialize() const override
Definition msg_cert_verify.cpp:35
Botan::TLS::Certificate_Verify::signature_scheme
Signature_Scheme signature_scheme() const
Definition tls_messages.h:255
Botan::TLS::Certificate_Verify::m_signature
std::vector< uint8_t > m_signature
Definition tls_messages.h:263
Botan::TLS::Cipher_State
Definition tls_cipher_state.h:61
Botan::TLS::Client_Hello_12_Shim::Client_Hello_13
friend class Client_Hello_13
Definition tls_messages.h:163
Botan::TLS::Client_Hello_12_Shim::Client_Hello_12_Shim
Client_Hello_12_Shim(const std::vector< uint8_t > &buf)
Definition msg_client_hello.cpp:271
Botan::TLS::Client_Hello_12_Shim::Client_Hello
Client_Hello(const Client_Hello &)=delete
Botan::TLS::Client_Hello_Internal
Definition tls_messages_internal.h:57
Botan::TLS::Client_Hello::cookie
const std::vector< uint8_t > & cookie() const
Definition msg_client_hello.cpp:264
Botan::TLS::Client_Hello::sni_hostname
std::string sni_hostname() const
Definition msg_client_hello.cpp:228
Botan::TLS::Client_Hello::serialize
std::vector< uint8_t > serialize() const override
Definition msg_client_hello.cpp:153
Botan::TLS::Client_Hello::random
const std::vector< uint8_t > & random() const
Definition msg_client_hello.cpp:126
Botan::TLS::Client_Hello::signature_schemes
std::vector< Signature_Scheme > signature_schemes() const
Definition msg_client_hello.cpp:195
Botan::TLS::Client_Hello::extensions
const Extensions & extensions() const
Definition msg_client_hello.cpp:146
Botan::TLS::Client_Hello::Client_Hello
Client_Hello(Client_Hello &&) noexcept
Botan::TLS::Client_Hello::offered_suite
bool offered_suite(uint16_t ciphersuite) const
Definition msg_client_hello.cpp:190
Botan::TLS::Client_Hello::m_data
std::unique_ptr< Client_Hello_Internal > m_data
Definition tls_messages.h:148
Botan::TLS::Client_Hello::sent_signature_algorithms
bool sent_signature_algorithms() const
Definition msg_client_hello.cpp:246
Botan::TLS::Client_Hello::supported_ecc_curves
std::vector< Group_Params > supported_ecc_curves() const
Definition msg_client_hello.cpp:214
Botan::TLS::Client_Hello::supports_alpn
bool supports_alpn() const
Definition msg_client_hello.cpp:242
Botan::TLS::Client_Hello::certificate_signature_schemes
std::vector< Signature_Scheme > certificate_signature_schemes() const
Definition msg_client_hello.cpp:202
Botan::TLS::Client_Hello::ciphersuites
const std::vector< uint16_t > & ciphersuites() const
Definition msg_client_hello.cpp:138
Botan::TLS::Client_Hello::cookie_input_data
std::vector< uint8_t > cookie_input_data() const
Definition msg_client_hello.cpp:181
Botan::TLS::Client_Hello::extension_types
std::set< Extension_Code > extension_types() const
Definition msg_client_hello.cpp:142
Botan::TLS::Client_Hello::supported_dh_groups
std::vector< Group_Params > supported_dh_groups() const
Definition msg_client_hello.cpp:221
Botan::TLS::Client_Hello::next_protocols
std::vector< std::string > next_protocols() const
Definition msg_client_hello.cpp:250
Botan::TLS::Client_Hello::session_id
const Session_ID & session_id() const
Definition msg_client_hello.cpp:130
Botan::TLS::Client_Hello::legacy_version
Protocol_Version legacy_version() const
Definition msg_client_hello.cpp:122
Botan::TLS::Client_Hello::compression_methods
const std::vector< uint8_t > & compression_methods() const
Definition msg_client_hello.cpp:134
Botan::TLS::Client_Hello::operator=
Client_Hello & operator=(const Client_Hello &)=delete
Botan::TLS::Client_Hello::srtp_profiles
std::vector< uint16_t > srtp_profiles() const
Definition msg_client_hello.cpp:257
Botan::TLS::Client_Hello::type
Handshake_Type type() const override
Definition msg_client_hello.cpp:118
Botan::TLS::Client_Hello::supported_versions
std::vector< Protocol_Version > supported_versions() const
Definition msg_client_hello.cpp:235
Botan::TLS::Client_Hello::Client_Hello
Client_Hello(const Client_Hello &)=delete
Botan::TLS::Finished::Handshake_Message
Handshake_Message()=default
Botan::TLS::Finished::Finished
Finished(const std::vector< uint8_t > &buf)
Definition tls_messages.h:272
Botan::TLS::Finished::serialize
std::vector< uint8_t > serialize() const override
Definition tls_messages.h:278
Botan::TLS::Finished::verify_data
std::vector< uint8_t > verify_data() const
Definition tls_messages.h:276
Botan::TLS::Finished::m_verification_data
std::vector< uint8_t > m_verification_data
Definition tls_messages.h:282
Botan::TLS::Finished::type
Handshake_Type type() const override
Definition tls_messages.h:274
Botan::TLS::Group_Params
Definition tls_algos.h:137
Botan::TLS::Handshake_IO
Definition tls_handshake_io.h:43
Botan::TLS::Handshake_Message::Handshake_Message
Handshake_Message()=default
Botan::TLS::Handshake_State
Definition tls_handshake_state.h:59
Botan::TLS::Hello_Retry_Request
Definition tls_messages_13.h:134
Botan::TLS::Hello_Verify_Request
Definition tls_messages.h:57
Botan::TLS::Hello_Verify_Request::type
Handshake_Type type() const override
Definition tls_messages.h:61
Botan::TLS::Hello_Verify_Request::Hello_Verify_Request
Hello_Verify_Request(const std::vector< uint8_t > &buf)
Definition msg_hello_verify.cpp:14
Botan::TLS::Hello_Verify_Request::cookie
const std::vector< uint8_t > & cookie() const
Definition tls_messages.h:63
Botan::TLS::Hello_Verify_Request::serialize
std::vector< uint8_t > serialize() const override
Definition msg_hello_verify.cpp:47
Botan::TLS::Protocol_Version
Definition tls_version.h:34
Botan::TLS::Server_Hello_12_Shim::Server_Hello_12_Shim
Server_Hello_12_Shim(const std::vector< uint8_t > &buf)
Definition msg_server_hello.cpp:157
Botan::TLS::Server_Hello_12_Shim::Server_Hello_13
friend class Server_Hello_13
Definition tls_messages.h:215
Botan::TLS::Server_Hello_12_Shim::selected_version
Protocol_Version selected_version() const final
Definition msg_server_hello.cpp:167
Botan::TLS::Server_Hello_12_Shim::random_signals_downgrade
std::optional< Protocol_Version > random_signals_downgrade() const
Definition msg_server_hello.cpp:171
Botan::TLS::Server_Hello_Internal
Definition tls_messages_internal.h:110
Botan::TLS::Server_Hello::Server_Hello
Server_Hello(const Server_Hello &)=delete
Botan::TLS::Server_Hello::ciphersuite
uint16_t ciphersuite() const
Definition msg_server_hello.cpp:145
Botan::TLS::Server_Hello::serialize
std::vector< uint8_t > serialize() const override
Definition msg_server_hello.cpp:105
Botan::TLS::Server_Hello::extension_types
std::set< Extension_Code > extension_types() const
Definition msg_server_hello.cpp:149
Botan::TLS::Server_Hello::type
Handshake_Type type() const override
Definition msg_server_hello.cpp:125
Botan::TLS::Server_Hello::session_id
const Session_ID & session_id() const
Definition msg_server_hello.cpp:141
Botan::TLS::Server_Hello::random
const std::vector< uint8_t > & random() const
Definition msg_server_hello.cpp:133
Botan::TLS::Server_Hello::compression_method
uint8_t compression_method() const
Definition msg_server_hello.cpp:137
Botan::TLS::Server_Hello::Server_Hello
Server_Hello(Server_Hello &&) noexcept
Botan::TLS::Server_Hello::m_data
std::unique_ptr< Server_Hello_Internal > m_data
Definition tls_messages.h:202
Botan::TLS::Server_Hello::extensions
const Extensions & extensions() const
Definition msg_server_hello.cpp:153
Botan::TLS::Server_Hello::operator=
Server_Hello & operator=(const Server_Hello &)=delete
Botan::TLS::Server_Hello::selected_version
virtual Protocol_Version selected_version() const =0
Botan::TLS::Server_Hello::legacy_version
Protocol_Version legacy_version() const
Definition msg_server_hello.cpp:129
Botan::TLS::Session_Manager
Definition tls_session_manager.h:46
Botan::TLS::Session_with_Handle
Definition tls_session.h:400
Botan::TLS::Signature_Scheme
Definition tls_signature_scheme.h:29
Botan::X509_Certificate
Definition x509cert.h:27
Botan::X509_DN
Definition pkix_types.h:41
Botan::TLS::Session_ID
Strong< std::vector< uint8_t >, struct Session_ID_ > Session_ID
holds a TLS 1.2 session ID for stateful resumption
Definition tls_session_id.h:22
Botan::SymmetricKey
OctetString SymmetricKey
Definition symkey.h:140
Generated by doxygen 1.15.0