mirror of
https://github.com/refraction-networking/utls.git
synced 2025-04-05 13:07:36 +03:00
75a67dc3a5
- Split most of changes for `CompressCertExtension` made to `crypto/tls` files out and moved them to `u_` files. - Edited some `crypto/tls` files to achieve better programmability for uTLS. - Minor styling fix.
53 lines
1.4 KiB
Go
53 lines
1.4 KiB
Go
// Copyright 2022 uTLS Authors. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package tls
|
|
|
|
import (
|
|
"golang.org/x/crypto/cryptobyte"
|
|
)
|
|
|
|
// Only implemented client-side, for server certificates.
|
|
// Alternate certificate message formats (https://datatracker.ietf.org/doc/html/rfc7250) are not
|
|
// supported.
|
|
// https://datatracker.ietf.org/doc/html/rfc8879
|
|
type compressedCertificateMsg struct {
|
|
raw []byte
|
|
|
|
algorithm uint16
|
|
uncompressedLength uint32 // uint24
|
|
compressedCertificateMessage []byte
|
|
}
|
|
|
|
func (m *compressedCertificateMsg) marshal() []byte {
|
|
if m.raw != nil {
|
|
return m.raw
|
|
}
|
|
|
|
var b cryptobyte.Builder
|
|
b.AddUint8(typeCompressedCertificate)
|
|
b.AddUint24LengthPrefixed(func(b *cryptobyte.Builder) {
|
|
b.AddUint16(m.algorithm)
|
|
b.AddUint24(m.uncompressedLength)
|
|
b.AddUint24LengthPrefixed(func(b *cryptobyte.Builder) {
|
|
b.AddBytes(m.compressedCertificateMessage)
|
|
})
|
|
})
|
|
|
|
m.raw = b.BytesOrPanic()
|
|
return m.raw
|
|
}
|
|
|
|
func (m *compressedCertificateMsg) unmarshal(data []byte) bool {
|
|
*m = compressedCertificateMsg{raw: data}
|
|
s := cryptobyte.String(data)
|
|
|
|
if !s.Skip(4) || // message type and uint24 length field
|
|
!s.ReadUint16(&m.algorithm) ||
|
|
!s.ReadUint24(&m.uncompressedLength) ||
|
|
!readUint24LengthPrefixed(&s, &m.compressedCertificateMessage) {
|
|
return false
|
|
}
|
|
return true
|
|
}
|