|  | // Copyright (c) 2013 The Chromium Authors. All rights reserved. | 
|  | // Use of this source code is governed by a BSD-style license that can be | 
|  | // found in the LICENSE file. | 
|  |  | 
|  | #ifndef QUICHE_QUIC_CORE_CRYPTO_PROOF_VERIFIER_H_ | 
|  | #define QUICHE_QUIC_CORE_CRYPTO_PROOF_VERIFIER_H_ | 
|  |  | 
|  | #include <memory> | 
|  | #include <string> | 
|  | #include <vector> | 
|  |  | 
|  | #include "absl/strings/string_view.h" | 
|  | #include "net/third_party/quiche/src/quic/core/quic_types.h" | 
|  | #include "net/third_party/quiche/src/quic/core/quic_versions.h" | 
|  | #include "net/third_party/quiche/src/quic/platform/api/quic_export.h" | 
|  |  | 
|  | namespace quic { | 
|  |  | 
|  | // ProofVerifyDetails is an abstract class that acts as a container for any | 
|  | // implementation specific details that a ProofVerifier wishes to return. These | 
|  | // details are saved in the CachedState for the origin in question. | 
|  | class QUIC_EXPORT_PRIVATE ProofVerifyDetails { | 
|  | public: | 
|  | virtual ~ProofVerifyDetails() {} | 
|  |  | 
|  | // Returns an new ProofVerifyDetails object with the same contents | 
|  | // as this one. | 
|  | virtual ProofVerifyDetails* Clone() const = 0; | 
|  | }; | 
|  |  | 
|  | // ProofVerifyContext is an abstract class that acts as a container for any | 
|  | // implementation specific context that a ProofVerifier needs. | 
|  | class QUIC_EXPORT_PRIVATE ProofVerifyContext { | 
|  | public: | 
|  | virtual ~ProofVerifyContext() {} | 
|  | }; | 
|  |  | 
|  | // ProofVerifierCallback provides a generic mechanism for a ProofVerifier to | 
|  | // call back after an asynchronous verification. | 
|  | class QUIC_EXPORT_PRIVATE ProofVerifierCallback { | 
|  | public: | 
|  | virtual ~ProofVerifierCallback() {} | 
|  |  | 
|  | // Run is called on the original thread to mark the completion of an | 
|  | // asynchonous verification. If |ok| is true then the certificate is valid | 
|  | // and |error_details| is unused. Otherwise, |error_details| contains a | 
|  | // description of the error. |details| contains implementation-specific | 
|  | // details of the verification. |Run| may take ownership of |details| by | 
|  | // calling |release| on it. | 
|  | virtual void Run(bool ok, | 
|  | const std::string& error_details, | 
|  | std::unique_ptr<ProofVerifyDetails>* details) = 0; | 
|  | }; | 
|  |  | 
|  | // A ProofVerifier checks the signature on a server config, and the certificate | 
|  | // chain that backs the public key. | 
|  | class QUIC_EXPORT_PRIVATE ProofVerifier { | 
|  | public: | 
|  | virtual ~ProofVerifier() {} | 
|  |  | 
|  | // VerifyProof checks that |signature| is a valid signature of | 
|  | // |server_config| by the public key in the leaf certificate of |certs|, and | 
|  | // that |certs| is a valid chain for |hostname|. On success, it returns | 
|  | // QUIC_SUCCESS. On failure, it returns QUIC_FAILURE and sets |*error_details| | 
|  | // to a description of the problem. In either case it may set |*details|, | 
|  | // which the caller takes ownership of. | 
|  | // | 
|  | // |context| specifies an implementation specific struct (which may be nullptr | 
|  | // for some implementations) that provides useful information for the | 
|  | // verifier, e.g. logging handles. | 
|  | // | 
|  | // This function may also return QUIC_PENDING, in which case the ProofVerifier | 
|  | // will call back, on the original thread, via |callback| when complete. | 
|  | // | 
|  | // The signature uses SHA-256 as the hash function and PSS padding in the | 
|  | // case of RSA. | 
|  | virtual QuicAsyncStatus VerifyProof( | 
|  | const std::string& hostname, | 
|  | const uint16_t port, | 
|  | const std::string& server_config, | 
|  | QuicTransportVersion transport_version, | 
|  | absl::string_view chlo_hash, | 
|  | const std::vector<std::string>& certs, | 
|  | const std::string& cert_sct, | 
|  | const std::string& signature, | 
|  | const ProofVerifyContext* context, | 
|  | std::string* error_details, | 
|  | std::unique_ptr<ProofVerifyDetails>* details, | 
|  | std::unique_ptr<ProofVerifierCallback> callback) = 0; | 
|  |  | 
|  | // VerifyCertChain checks that |certs| is a valid chain for |hostname|. On | 
|  | // success, it returns QUIC_SUCCESS. On failure, it returns QUIC_FAILURE and | 
|  | // sets |*error_details| to a description of the problem. In either case it | 
|  | // may set |*details|, which the caller takes ownership of. | 
|  | // | 
|  | // |context| specifies an implementation specific struct (which may be nullptr | 
|  | // for some implementations) that provides useful information for the | 
|  | // verifier, e.g. logging handles. | 
|  | // | 
|  | // If certificate verification fails, a TLS alert will be sent when closing | 
|  | // the connection. This alert defaults to certificate_unknown. By setting | 
|  | // |*out_alert|, a different alert can be sent to provide a more specific | 
|  | // reason why verification failed. | 
|  | // | 
|  | // This function may also return QUIC_PENDING, in which case the ProofVerifier | 
|  | // will call back, on the original thread, via |callback| when complete. | 
|  | // In this case, the ProofVerifier will take ownership of |callback|. | 
|  | virtual QuicAsyncStatus VerifyCertChain( | 
|  | const std::string& hostname, | 
|  | const uint16_t port, | 
|  | const std::vector<std::string>& certs, | 
|  | const std::string& ocsp_response, | 
|  | const std::string& cert_sct, | 
|  | const ProofVerifyContext* context, | 
|  | std::string* error_details, | 
|  | std::unique_ptr<ProofVerifyDetails>* details, | 
|  | uint8_t* out_alert, | 
|  | std::unique_ptr<ProofVerifierCallback> callback) = 0; | 
|  |  | 
|  | // Returns a ProofVerifyContext instance which can be use for subsequent | 
|  | // verifications. Applications may chose create a different context and | 
|  | // supply it for verifications instead. | 
|  | virtual std::unique_ptr<ProofVerifyContext> CreateDefaultContext() = 0; | 
|  | }; | 
|  |  | 
|  | }  // namespace quic | 
|  |  | 
|  | #endif  // QUICHE_QUIC_CORE_CRYPTO_PROOF_VERIFIER_H_ |