Botan 3.10.0
Crypto and TLS for C&
tls_server.cpp
Go to the documentation of this file.
1/*
2* TLS Server
3* (C) 2004-2011,2012,2016 Jack Lloyd
4* 2016 Matthias Gierlings
5* 2021 Elektrobit Automotive GmbH
6* 2022 René Meusel, Hannes Rantzsch - neXenio GmbH
7*
8* Botan is released under the Simplified BSD License (see license.txt)
9*/
10
11#include <botan/tls_server.h>
12
13#include <botan/tls_messages.h>
14#include <botan/internal/tls_handshake_state.h>
15
16#include <botan/internal/tls_server_impl_12.h>
17#if defined(BOTAN_HAS_TLS_13)
18 #include <botan/internal/tls_server_impl_13.h>
19#endif
20
21namespace Botan::TLS {
22
23/*
24* TLS Server Constructor
25*/
26Server::Server(const std::shared_ptr<Callbacks>& callbacks,
27 const std::shared_ptr<Session_Manager>& session_manager,
28 const std::shared_ptr<Credentials_Manager>& creds,
29 const std::shared_ptr<const Policy>& policy,
30 const std::shared_ptr<RandomNumberGenerator>& rng,
31 bool is_datagram,
32 size_t io_buf_sz) {
33 const auto max_version = policy->latest_supported_version(is_datagram);
34
35 if(!max_version.is_pre_tls_13()) {
36#if defined(BOTAN_HAS_TLS_13)
37 m_impl = std::make_unique<Server_Impl_13>(callbacks, session_manager, creds, policy, rng);
38
39 if(m_impl->expects_downgrade()) {
40 m_impl->set_io_buffer_size(io_buf_sz);
41 }
42#else
43 throw Not_Implemented("TLS 1.3 server is not available in this build");
44#endif
45 } else {
46 m_impl = std::make_unique<Server_Impl_12>(callbacks, session_manager, creds, policy, rng, is_datagram, io_buf_sz);
47 }
48}
49
50Server::~Server() = default;
51
52size_t Server::from_peer(std::span<const uint8_t> data) {
53 auto read = m_impl->from_peer(data);
54
55 if(m_impl->is_downgrading()) {
56 auto info = m_impl->extract_downgrade_info();
57 m_impl = std::make_unique<Server_Impl_12>(*info);
58
59 // replay peer data received so far
60 read = m_impl->from_peer(info->peer_transcript);
61 }
62
63 return read;
64}
65
66bool Server::is_handshake_complete() const {
67 return m_impl->is_handshake_complete();
68}
69
70bool Server::is_active() const {
71 return m_impl->is_active();
72}
73
74bool Server::is_closed() const {
75 return m_impl->is_closed();
76}
77
78bool Server::is_closed_for_reading() const {
79 return m_impl->is_closed_for_reading();
80}
81
82bool Server::is_closed_for_writing() const {
83 return m_impl->is_closed_for_writing();
84}
85
86std::vector<X509_Certificate> Server::peer_cert_chain() const {
87 return m_impl->peer_cert_chain();
88}
89
90std::shared_ptr<const Public_Key> Server::peer_raw_public_key() const {
91 return m_impl->peer_raw_public_key();
92}
93
94std::optional<std::string> Server::external_psk_identity() const {
95 return m_impl->external_psk_identity();
96}
97
98SymmetricKey Server::key_material_export(std::string_view label, std::string_view context, size_t length) const {
99 return m_impl->key_material_export(label, context, length);
100}
101
102void Server::renegotiate(bool force_full_renegotiation) {
103 m_impl->renegotiate(force_full_renegotiation);
104}
105
106bool Server::new_session_ticket_supported() const {
107 return m_impl->new_session_ticket_supported();
108}
109
110size_t Server::send_new_session_tickets(const size_t tickets) {
111 return m_impl->send_new_session_tickets(tickets);
112}
113
114void Server::update_traffic_keys(bool request_peer_update) {
115 m_impl->update_traffic_keys(request_peer_update);
116}
117
118bool Server::secure_renegotiation_supported() const {
119 return m_impl->secure_renegotiation_supported();
120}
121
122void Server::to_peer(std::span<const uint8_t> data) {
123 m_impl->to_peer(data);
124}
125
126void Server::send_alert(const Alert& alert) {
127 m_impl->send_alert(alert);
128}
129
130void Server::send_warning_alert(Alert::Type type) {
131 m_impl->send_warning_alert(type);
132}
133
134void Server::send_fatal_alert(Alert::Type type) {
135 m_impl->send_fatal_alert(type);
136}
137
138void Server::close() {
139 m_impl->close();
140}
141
142bool Server::timeout_check() {
143 return m_impl->timeout_check();
144}
145
146std::string Server::application_protocol() const {
147 return m_impl->application_protocol();
148}
149} // namespace Botan::TLS
Botan::Not_Implemented
Definition exceptn.h:334
Botan::TLS::Alert::Type
AlertType Type
Definition tls_alert.h:71
Botan::TLS::Server::update_traffic_keys
void update_traffic_keys(bool request_peer_update=false) override
Definition tls_server.cpp:114
Botan::TLS::Server::key_material_export
SymmetricKey key_material_export(std::string_view label, std::string_view context, size_t length) const override
Definition tls_server.cpp:98
Botan::TLS::Server::~Server
~Server() override
Botan::TLS::Server::timeout_check
bool timeout_check() override
Definition tls_server.cpp:142
Botan::TLS::Server::close
void close() override
Definition tls_server.cpp:138
Botan::TLS::Server::secure_renegotiation_supported
bool secure_renegotiation_supported() const override
Definition tls_server.cpp:118
Botan::TLS::Server::send_fatal_alert
void send_fatal_alert(Alert::Type type) override
Definition tls_server.cpp:134
Botan::TLS::Server::is_closed
bool is_closed() const override
Definition tls_server.cpp:74
Botan::TLS::Server::is_closed_for_writing
bool is_closed_for_writing() const override
Definition tls_server.cpp:82
Botan::TLS::Server::application_protocol
std::string application_protocol() const override
Definition tls_server.cpp:146
Botan::TLS::Server::send_new_session_tickets
size_t send_new_session_tickets(size_t tickets=1)
Definition tls_server.cpp:110
Botan::TLS::Server::Server
Server(const std::shared_ptr< Callbacks > &callbacks, const std::shared_ptr< Session_Manager > &session_manager, const std::shared_ptr< Credentials_Manager > &creds, const std::shared_ptr< const Policy > &policy, const std::shared_ptr< RandomNumberGenerator > &rng, bool is_datagram=false, size_t reserved_io_buffer_size=TLS::Channel::IO_BUF_DEFAULT_SIZE)
Definition tls_server.cpp:26
Botan::TLS::Server::is_handshake_complete
bool is_handshake_complete() const override
Definition tls_server.cpp:66
Botan::TLS::Server::renegotiate
void renegotiate(bool force_full_renegotiation=false) override
Definition tls_server.cpp:102
Botan::TLS::Server::external_psk_identity
std::optional< std::string > external_psk_identity() const override
Definition tls_server.cpp:94
Botan::TLS::Server::peer_raw_public_key
std::shared_ptr< const Public_Key > peer_raw_public_key() const override
Definition tls_server.cpp:90
Botan::TLS::Server::send_alert
void send_alert(const Alert &alert) override
Definition tls_server.cpp:126
Botan::TLS::Server::send_warning_alert
void send_warning_alert(Alert::Type type) override
Definition tls_server.cpp:130
Botan::TLS::Server::new_session_ticket_supported
bool new_session_ticket_supported() const
Definition tls_server.cpp:106
Botan::TLS::Server::peer_cert_chain
std::vector< X509_Certificate > peer_cert_chain() const override
Definition tls_server.cpp:86
Botan::TLS::Server::to_peer
void to_peer(std::span< const uint8_t > data) override
Definition tls_server.cpp:122
Botan::TLS::Server::is_active
bool is_active() const override
Definition tls_server.cpp:70
Botan::TLS::Server::from_peer
size_t from_peer(std::span< const uint8_t > data) override
Definition tls_server.cpp:52
Botan::TLS::Server::is_closed_for_reading
bool is_closed_for_reading() const override
Definition tls_server.cpp:78
Botan::SymmetricKey
OctetString SymmetricKey
Definition symkey.h:140
Generated by doxygen 1.15.0