1adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project/* 2adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Licensed to the Apache Software Foundation (ASF) under one or more 3adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * contributor license agreements. See the NOTICE file distributed with 4adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * this work for additional information regarding copyright ownership. 5adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * The ASF licenses this file to You under the Apache License, Version 2.0 6adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * (the "License"); you may not use this file except in compliance with 7adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * the License. You may obtain a copy of the License at 8adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * 9adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * http://www.apache.org/licenses/LICENSE-2.0 10adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * 11adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Unless required by applicable law or agreed to in writing, software 12adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * distributed under the License is distributed on an "AS IS" BASIS, 13adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 14adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * See the License for the specific language governing permissions and 15adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * limitations under the License. 16adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project */ 17adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 1838375a4d0b3d34e2babbd2f6a013976c7c439696Kenny Rootpackage org.conscrypt; 19adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 20adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Projectimport java.io.IOException; 21adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 22adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project/** 23adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Represents certificate verify message 24adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * @see <a href="http://www.ietf.org/rfc/rfc2246.txt">TLS 1.0 spec., 7.4.8. 25adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Certificate verify</a> 26adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project */ 27adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Projectpublic class CertificateVerify extends Message { 28adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 29adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project /** 30adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Signature 31adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project */ 32adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project byte[] signedHash; 33adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 34adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project /** 35adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Creates outbound message 36f33eae7e84eb6d3b0f4e86b59605bb3de73009f3Elliott Hughes * 37adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * @param hash 38adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project */ 39adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project public CertificateVerify(byte[] hash) { 40adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project if (hash == null || hash.length == 0) { 41adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project fatalAlert(AlertProtocol.INTERNAL_ERROR, 42adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project "INTERNAL ERROR: incorrect certificate verify hash"); 43adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 44adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project this.signedHash = hash; 45adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project length = hash.length + 2; 46adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 47adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 48adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project /** 49adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Creates inbound message 50f33eae7e84eb6d3b0f4e86b59605bb3de73009f3Elliott Hughes * 51adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * @param in 52adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * @param length 53adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * @throws IOException 54adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project */ 55adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project public CertificateVerify(HandshakeIODataStream in, int length) 56adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project throws IOException { 57adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project if (length == 0) { 58adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project fatalAlert(AlertProtocol.DECODE_ERROR, 59adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project "DECODE ERROR: incorrect CertificateVerify"); 60adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } else { 61adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project if (in.readUint16() != length - 2) { 62adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project fatalAlert(AlertProtocol.DECODE_ERROR, 63adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project "DECODE ERROR: incorrect CertificateVerify"); 64adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 65adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project signedHash = in.read(length -2); 66adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 67adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project this.length = length; 68adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 69adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 70adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project /** 71adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Sends message 72f33eae7e84eb6d3b0f4e86b59605bb3de73009f3Elliott Hughes * 73adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * @param out 74adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project */ 75f921579f87fa63204b4a4bef39ed27e7835aec45Jesse Wilson @Override 76adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project public void send(HandshakeIODataStream out) { 77adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project if (signedHash.length != 0) { 78adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project out.writeUint16(signedHash.length); 79adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project out.write(signedHash); 80adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 81adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 82adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project 83adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project /** 84adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project * Returns message type 85adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project */ 86f921579f87fa63204b4a4bef39ed27e7835aec45Jesse Wilson @Override 87adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project public int getType() { 88adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project return Handshake.CERTIFICATE_VERIFY; 89adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project } 90adc854b798c1cfe3bfd4c27d68d5cee38ca617daThe Android Open Source Project} 91