Handshake.h
Go to the documentation of this file.
1 /*
2  * Copyright (C) 1996-2023 The Squid Software Foundation and contributors
3  *
4  * Squid software is distributed under GPLv2+ license and includes
5  * contributions from numerous individuals and organizations.
6  * Please see the COPYING and CONTRIBUTORS files for details.
7  */
8 
9 #ifndef SQUID_SRC_SECURITY_HANDSHAKE_H
10 #define SQUID_SRC_SECURITY_HANDSHAKE_H
11 
12 #include "anyp/ProtocolVersion.h"
13 #include "base/YesNoNone.h"
14 #include "parser/BinaryTokenizer.h"
15 #include "security/forward.h"
16 
17 #include <unordered_set>
18 
19 namespace Security
20 {
21 
22 class TlsDetails: public RefCountable
23 {
24 public:
25  typedef RefCount<TlsDetails> Pointer;
26 
27  TlsDetails();
29  std::ostream & print(std::ostream &os) const;
30 
31  AnyP::ProtocolVersion tlsVersion;
32 
35  AnyP::ProtocolVersion tlsSupportedVersion;
36 
37  bool compressionSupported;
38  SBuf serverName;
39  bool doHeartBeats;
40  bool tlsTicketsExtension;
41  bool hasTlsTicket;
42  bool tlsStatusRequest;
43  bool unsupportedExtensions;
44  SBuf tlsAppLayerProtoNeg;
45  SBuf clientRandom;
47  SBuf sessionId;
48 
49  typedef std::unordered_set<uint16_t> Ciphers;
50  Ciphers ciphers;
51 };
52 
53 inline std::ostream &
54 operator <<(std::ostream &os, const TlsDetails &details)
55 {
56  return details.print(os);
57 }
58 
60 class HandshakeParser
61 {
62 public:
64  typedef enum { atHelloNone = 0, atHelloStarted, atHelloReceived, atHelloDoneReceived, atNstReceived, atCcsReceived, atFinishReceived } ParserState;
65 
67  typedef enum { fromClient = 0, fromServer } MessageSource;
68 
69  explicit HandshakeParser(MessageSource);
70 
75  bool parseHello(const SBuf &data);
76 
77  TlsDetails::Pointer details;
78 
79  ParserState state;
80 
81  bool resumingSession;
82 
84  MessageSource messageSource;
85 
86 private:
87  bool isSslv2Record(const SBuf &raw) const;
88  void parseRecord();
89  void parseModernRecord();
90  void parseVersion2Record();
91  void parseMessages();
92 
93  void parseChangeCipherCpecMessage();
94  void parseAlertMessage();
95  void parseHandshakeMessage();
96  void parseApplicationDataMessage();
97  void skipMessage(const char *msgType);
98 
99  bool parseRecordVersion2Try();
100  void parseVersion2HandshakeMessage(const SBuf &raw);
101  void parseClientHelloHandshakeMessage(const SBuf &raw);
102  void parseServerHelloHandshakeMessage(const SBuf &raw);
103 
104  bool parseCompressionMethods(const SBuf &raw);
105  void parseExtensions(const SBuf &raw);
106  SBuf parseSniExtension(const SBuf &extensionData) const;
107  void parseSupportedVersionsExtension(const SBuf &extensionData) const;
108 
109  void parseCiphers(const SBuf &raw);
110  void parseV23Ciphers(const SBuf &raw);
111 
112  void parseServerCertificates(const SBuf &raw);
113 
114  unsigned int currentContentType;
115 
116  const char *done;
117 
119  SBuf fragments;
120 
122  Parser::BinaryTokenizer tkRecords;
123 
125  Parser::BinaryTokenizer tkMessages;
126 
128  YesNoNone expectingModernRecords;
129 };
130 
132 inline bool
133 TlsFamilyProtocol(const AnyP::ProtocolVersion &version)
134 {
135  return (version.protocol == AnyP::PROTO_TLS || version.protocol == AnyP::PROTO_SSL);
136 }
137 
139 inline bool
140 TlsVersionEarlierThan(const AnyP::ProtocolVersion &a, const AnyP::ProtocolVersion &b)
141 {
142  Must(TlsFamilyProtocol(a));
143  Must(TlsFamilyProtocol(b));
144 
145  if (a.protocol == b.protocol)
146  return a < b;
147 
148  return a.protocol == AnyP::PROTO_SSL; // implies that b is TLS
149 }
150 
152 inline bool
153 Tls1p2orEarlier(const AnyP::ProtocolVersion &p)
154 {
155  return TlsVersionEarlierThan(p, AnyP::ProtocolVersion(AnyP::PROTO_TLS, 1, 3));
156 }
157 
159 inline bool
160 Tls1p3orLater(const AnyP::ProtocolVersion &p)
161 {
162  return !Tls1p2orEarlier(p);
163 }
164 
165 }
166 
167 #endif /* SQUID_SRC_SECURITY_HANDSHAKE_H */
168 
Security::TlsDetails::print
std::ostream & print(std::ostream &os) const
Prints to os stream a human readable form of TlsDetails object.
Security::TlsDetails::tlsVersion
AnyP::ProtocolVersion tlsVersion
The TLS hello message version.
Definition: Handshake.h:31
Security::HandshakeParser::parseV23Ciphers
void parseV23Ciphers(const SBuf &raw)
Definition: Handshake.cc:490
Security::HandshakeParser::skipMessage
void skipMessage(const char *msgType)
Definition: Handshake.cc:632
AnyP::PROTO_SSL
@ PROTO_SSL
Definition: ProtocolType.h:39
Security::TlsFamilyProtocol
bool TlsFamilyProtocol(const AnyP::ProtocolVersion &version)
whether the given protocol belongs to the TLS/SSL group of protocols
Definition: Handshake.h:133
Security::HandshakeParser::fragments
SBuf fragments
concatenated TLSPlaintext.fragments of TLSPlaintext.type
Definition: Handshake.h:119
SBuf
Definition: SBuf.h:93
Security::TlsDetails::compressionSupported
bool compressionSupported
The requested/used compressed method.
Definition: Handshake.h:37
Security::HandshakeParser::done
const char * done
not nil if we got what we were looking for
Definition: Handshake.h:116
Security::HandshakeParser::parseVersion2HandshakeMessage
void parseVersion2HandshakeMessage(const SBuf &raw)
Definition: Handshake.cc:389
Security::HandshakeParser::resumingSession
bool resumingSession
True if this is a resuming session.
Definition: Handshake.h:81
Security::HandshakeParser::HandshakeParser
HandshakeParser(MessageSource)
Definition: Handshake.cc:219
Security::TlsDetails::serverName
SBuf serverName
The SNI hostname, if any.
Definition: Handshake.h:38
Security::TlsDetails::tlsStatusRequest
bool tlsStatusRequest
whether the TLS status request extension is set
Definition: Handshake.h:42
Security::HandshakeParser::parseExtensions
void parseExtensions(const SBuf &raw)
Definition: Handshake.cc:435
AnyP::ProtocolVersion::protocol
ProtocolType protocol
which protocol this version is for
Definition: ProtocolVersion.h:39
Security::HandshakeParser::messageSource
MessageSource messageSource
whether we are parsing Server or Client TLS handshake messages
Definition: Handshake.h:84
Security::HandshakeParser::parseSniExtension
SBuf parseSniExtension(const SBuf &extensionData) const
Definition: Handshake.cc:526
Security::TlsVersionEarlierThan
bool TlsVersionEarlierThan(const AnyP::ProtocolVersion &a, const AnyP::ProtocolVersion &b)
whether TLS/SSL protocol a precedes TLS/SSL protocol b
Definition: Handshake.h:140
AnyP::PROTO_TLS
@ PROTO_TLS
Definition: ProtocolType.h:38
Security::Tls1p2orEarlier
bool Tls1p2orEarlier(const AnyP::ProtocolVersion &p)
whether the given TLS/SSL protocol is TLS v1.2 or earlier, including SSL
Definition: Handshake.h:153
Security::TlsDetails::clientRandom
SBuf clientRandom
The client random number.
Definition: Handshake.h:46
Security::TlsDetails::Ciphers
std::unordered_set< uint16_t > Ciphers
Definition: Handshake.h:49
Security::TlsDetails::unsupportedExtensions
bool unsupportedExtensions
whether any unsupported by Squid extensions are used
Definition: Handshake.h:43
Security::HandshakeParser::parseModernRecord
void parseModernRecord()
parses a single TLS Record Layer frame
Definition: Handshake.cc:264
Security::HandshakeParser::tkMessages
Parser::BinaryTokenizer tkMessages
TLS message layer (parsing fragments)
Definition: Handshake.h:125
Security::operator<<
std::ostream & operator<<(std::ostream &, const EncryptorAnswer &)
Definition: EncryptorAnswer.cc:20
Security::HandshakeParser::details
TlsDetails::Pointer details
TLS handshake meta info. Never nil.
Definition: Handshake.h:77
Security::HandshakeParser::parseHello
bool parseHello(const SBuf &data)
Definition: Handshake.cc:641
version
static int version
Definition: basic_ldap_auth.cc:166
Security::TlsDetails::hasTlsTicket
bool hasTlsTicket
whether a TLS ticket is included
Definition: Handshake.h:41
Security::HandshakeParser::parseCompressionMethods
bool parseCompressionMethods(const SBuf &raw)
Definition: Handshake.cc:420
Security::Tls1p3orLater
bool Tls1p3orLater(const AnyP::ProtocolVersion &p)
whether the given TLS/SSL protocol is TLS v1.3 or later
Definition: Handshake.h:160
Security::TlsDetails::tlsTicketsExtension
bool tlsTicketsExtension
whether TLS tickets extension is enabled
Definition: Handshake.h:40
Security::HandshakeParser::ParserState
ParserState
The parsing states.
Definition: Handshake.h:64
Security::HandshakeParser::expectingModernRecords
YesNoNone expectingModernRecords
Whether to use TLS parser or a V2 compatible parser.
Definition: Handshake.h:128
Security::HandshakeParser::parseServerCertificates
void parseServerCertificates(const SBuf &raw)
Security::HandshakeParser::tkRecords
Parser::BinaryTokenizer tkRecords
TLS record layer (parsing uninterpreted data)
Definition: Handshake.h:122
Security::HandshakeParser::parseSupportedVersionsExtension
void parseSupportedVersionsExtension(const SBuf &extensionData) const
RFC 8446 Section 4.2.1: SupportedVersions extension.
Definition: Handshake.cc:554
Security::TlsDetails::Pointer
RefCount< TlsDetails > Pointer
Definition: Handshake.h:25
Security::TlsDetails::tlsSupportedVersion
AnyP::ProtocolVersion tlsSupportedVersion
Definition: Handshake.h:35
Security::HandshakeParser::parseCiphers
void parseCiphers(const SBuf &raw)
Definition: Handshake.cc:479
Must
#define Must(condition)
Definition: TextException.h:75
Security::HandshakeParser::parseServerHelloHandshakeMessage
void parseServerHelloHandshakeMessage(const SBuf &raw)
RFC 5246 Section 7.4.1.3. Server Hello.
Definition: Handshake.cc:509
Security::HandshakeParser
Incremental TLS/SSL Handshake parser.
Definition: Handshake.h:60
Security::HandshakeParser::MessageSource
MessageSource
the originator of the TLS handshake being parsed
Definition: Handshake.h:67
Security::HandshakeParser::currentContentType
unsigned int currentContentType
The current TLS/SSL record content type.
Definition: Handshake.h:114
Security::HandshakeParser::parseClientHelloHandshakeMessage
void parseClientHelloHandshakeMessage(const SBuf &raw)
Definition: Handshake.cc:405
Security::HandshakeParser::state
ParserState state
current parsing state.
Definition: Handshake.h:79
Security::HandshakeParser::parseMessages
void parseMessages()
parses one or more "higher-level protocol" frames of currentContentType
Definition: Handshake.cc:291
Security
Network/connection security abstraction layer.
Definition: Connection.h:33
Security::HandshakeParser::isSslv2Record
bool isSslv2Record(const SBuf &raw) const
Definition: Handshake.cc:244

 

Introduction

Documentation

Support

Miscellaneous