cSSLClient.h

Go to the documentation of this file.

//
//
#ifndef _INC_cSSLClient_H
#define _INC_cSSLClient_H
#ifndef NO_PRAGMA_ONCE
#pragma once
#endif
#include "cSSLCommon.h"
 
#if defined(USE_SSL_CLIENT)
namespace GraySSL
{
        class GRAYSSL_LINK cSSLClient : public cSSLCommon
        {
 
                typedef cSSLCommon SUPER_t;
        public:
                cStringA m_sServerName;                         
 
        public:
                cSSLClient(const cSSLConfig& rOpts) noexcept
                        : cSSLCommon(false, rOpts)
                {
                }
 
                ~cSSLClient()
                {
                        m_sServerName.SetErase();
                }
 
                virtual void SetSessionClear() override;
                HRESULT put_ServerName(const char* pszServerName);
 
                virtual HRESULT ProcessStreamPacket() override; // entry point.
 
                HRESULT state_SSL_ClientHello();
                HRESULT state_SSL_ServerHello();
                HRESULT state_SSL_SERVER_KEY_EXCHANGE();
                HRESULT state_SSL_CERTIFICATE_REQUEST();
                HRESULT state_SSL_ServerHello_DONE();
                HRESULT state_SSL_CLIENT_KEY_EXCHANGE();
                HRESULT state_SSL_CERTIFICATE_VERIFY();
                HRESULT state_SSL_SERVER_CHANGE_CIPHER_SPEC();
 
                HRESULT parse_TLS_EXT_renegotiation_info(const BYTE* buf, size_t len);
                HRESULT parse_TLS_EXT_MaxFragmentLength(const BYTE* buf, size_t len);
                HRESULT parse_TLS_EXT_TruncatedHMAC(const BYTE* buf, size_t len);
                HRESULT parse_TLS_EXT_EncryptThenMac(const BYTE* buf, size_t len);
 
        private:
                size_t build_TLS_EXT_server_name(cSSLMsgHandExt* pExt);
#if defined(USE_SSL_RENEGOTIATION)
                size_t build_TLS_EXT_renegotiation_info(cSSLMsgHandExt* pExt);
#endif
#if defined(USE_SSL_KeyExchange_Cert_SOME)
                size_t build_TLS_EXT_signature_algorithms(BYTE* buf);
#endif
#if defined(USE_SSL_ECDH) || defined(USE_Key_ECDSA)
                size_t build_TLS_EXT_supported_groups(BYTE* buf);
                size_t build_TLS_EXT_ec_point_formats(cSSLMsgHandExt* pExt);
#endif
 
                size_t build_TLS_EXT_TruncatedHMAC(BYTE* buf);
                size_t build_TLS_EXT_EncryptThenMac(BYTE* buf);
                size_t build_TLS_EXT_ExtendedMasterSecret(cSSLMsgHandExt* pExt);
 
#if defined(USE_SSL_SESSION_TICKETS)
                size_t build_TLS_EXT_SessionTicket(cSSLMsgHandExt* pExt);
#endif
 
                size_t build_TLS_EXT_ALPN(cSSLMsgHandExt* pExt);
                HRESULT parse_TLS_EXT_ALPN(const BYTE* buf, size_t len);
 
                HRESULT parse_TLS_EXT_ExtendedMasterSecret(const BYTE* buf, size_t len);
 
#if defined(USE_SSL_SESSION_TICKETS)
                HRESULT parse_TLS_EXT_SessionTicket(const BYTE* buf, size_t len);
#endif
#if defined(USE_SSL_ECDH) || defined(USE_Key_ECDSA)
                HRESULT parse_TLS_EXT_ec_point_formats(const BYTE* buf, size_t len);
#endif
 
                HRESULT CheckServerECDHParams() const;
                HRESULT parse_KeyEx_signature_algorithm(const BYTE* p, const BYTE* end, SSL_Hash_TYPE* eHashType, SSL_Key_TYPE* eKeyType) const;
                HRESULT parse_KeyEx_signature(const BYTE* p, const BYTE* end, const cSSLCipherSuite* pCipherSuite) const;
 
#if defined(USE_SSL_KeyExchange_PSK_SOME)
                HRESULT parse_KeyEx_server_psk_hint(const BYTE* p, const BYTE* end);
#endif
#if defined(USE_SSL_KeyExchange_RSA) ||  defined(USE_SSL_KeyExchange_RSA_PSK)
                HRESULT BuildKeyExPreMasterSecret(BYTE* pData, size_t nSizeMax, size_t pms_offset);
#endif
        };
}
#endif // USE_SSL_CLIENT
#endif