diff options
| author | lloyd <[email protected]> | 2010-01-11 22:57:21 +0000 |
|---|---|---|
| committer | lloyd <[email protected]> | 2010-01-11 22:57:21 +0000 |
| commit | a4124ddf481bfc56859007b34dea646ecb7f8a25 (patch) | |
| tree | fd842d8a091c5c529d6c32cd300bc195519ceb46 /src/ssl/tls_server.h | |
| parent | f5fd85b0ea6a5a6975d595130e029f94fddae9a4 (diff) | |
Import latest version of Ajisai into src/ssl; once this hits mainline
I'll officially kill off Ajisai (instead of it just lingering as a zombine
as it is currently).
Apparently I broke something (or multiple things) during the import process;
servers crash and clients gets MAC errors on connect.
Diffstat (limited to 'src/ssl/tls_server.h')
| -rw-r--r-- | src/ssl/tls_server.h | 69 |
1 files changed, 69 insertions, 0 deletions
diff --git a/src/ssl/tls_server.h b/src/ssl/tls_server.h new file mode 100644 index 000000000..2cc7f0601 --- /dev/null +++ b/src/ssl/tls_server.h @@ -0,0 +1,69 @@ +/** +* TLS Server Header File +* (C) 2004-2006 Jack Lloyd +* +* Released under the terms of the Botan license +*/ + +#ifndef BOTAN_SERVER_H__ +#define BOTAN_SERVER_H__ + +#include <botan/tls_connection.h> +#include <botan/tls_state.h> +#include <vector> + +namespace Botan { + +/** +* TLS Server +*/ + +// FIXME: much of this can probably be moved up to TLS_Connection +class BOTAN_DLL TLS_Server + { + public: + u32bit read(byte[], u32bit); + void write(const byte[], u32bit); + + std::vector<X509_Certificate> peer_cert_chain() const; + + void close(); + bool is_closed() const; + + // FIXME: support cert chains (!) + // FIXME: support anonymous servers + TLS_Server(RandomNumberGenerator& rng, + Socket&, + const X509_Certificate&, const PKCS8_PrivateKey&, + const Policy* = 0); + + ~TLS_Server(); + private: + void close(Alert_Level, Alert_Type); + + void do_handshake(); + void state_machine(); + void read_handshake(byte, const MemoryRegion<byte>&); + + void process_handshake_msg(Handshake_Type, const MemoryRegion<byte>&); + + RandomNumberGenerator& rng; + + Record_Writer writer; + Record_Reader reader; + const Policy* policy; + + // FIXME: rename to match TLS_Client + std::vector<X509_Certificate> cert_chain, peer_certs; + PKCS8_PrivateKey* private_key; + + Handshake_State* state; + SecureVector<byte> session_id; + SecureQueue read_buf; + std::string peer_id; + bool active; + }; + +} + +#endif |