1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46
|
/*
* Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
*
* Licensed under the Apache License, Version 2.0 (the "License").
* You may not use this file except in compliance with the License.
* A copy of the License is located at
*
* http://aws.amazon.com/apache2.0
*
* or in the "license" file accompanying this file. This file is distributed
* on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either
* express or implied. See the License for the specific language governing
* permissions and limitations under the License.
*/
#include "tls/extensions/s2n_server_cert_status_request.h"
#include "tls/s2n_connection.h"
static bool s2n_server_cert_status_request_should_send(struct s2n_connection *conn);
static int s2n_server_cert_status_request_send(struct s2n_connection *conn, struct s2n_stuffer *out);
const s2n_extension_type s2n_server_cert_status_request_extension = {
.iana_value = TLS_EXTENSION_STATUS_REQUEST,
.is_response = false,
.send = s2n_server_cert_status_request_send,
.recv = s2n_extension_recv_noop,
.should_send = s2n_server_cert_status_request_should_send,
.if_missing = s2n_extension_noop_if_missing,
};
static int s2n_server_cert_status_request_send(struct s2n_connection *conn, struct s2n_stuffer *out)
{
/**
*= https://tools.ietf.org/rfc/rfc8446#4.4.2.1
*# A server MAY request that a client present an OCSP response with its
*# certificate by sending an empty "status_request" extension in its
*# CertificateRequest message.
*/
return S2N_SUCCESS;
}
static bool s2n_server_cert_status_request_should_send(struct s2n_connection *conn)
{
return conn->request_ocsp_status;
}
|