PcapPlusPlus  Next
X509ExtensionDataDecoder.h
1 #pragma once
2 #include "Asn1Codec.h"
3 
6 namespace pcpp
7 {
10  class X509ExtendedKeyUsagePurpose
11  {
12  public:
14  enum Value : uint8_t
15  {
17  ServerAuth,
19  ClientAuth,
21  CodeSigning,
23  EmailProtection,
25  TimeStamping,
27  OCSPSigning,
29  IPSecEndSystem,
31  IPSecTunnel,
33  IPSecUser,
34  // Any extended key usage
35  AnyExtendedKeyUsage,
37  SmartCardLogon,
39  EncryptedFileSystem,
41  DocumentSigning,
43  Unknown,
44  };
45 
46  X509ExtendedKeyUsagePurpose() = default;
47 
48  constexpr X509ExtendedKeyUsagePurpose(Value value) : m_Value(value)
49  {}
50 
52  std::string toString() const;
53 
55  std::string getOidValue() const;
56 
60  static X509ExtendedKeyUsagePurpose fromOidValue(const Asn1ObjectIdentifier& value);
61 
62  // Allow switch and comparisons.
63  constexpr operator Value() const
64  {
65  return m_Value;
66  }
67 
68  // Prevent usage: if(X509ExtendedKeyUsagePurpose)
69  explicit operator bool() const = delete;
70 
71  private:
72  Value m_Value = Unknown;
73  };
74 
77  namespace X509Internal
78  {
81  class X509ExtensionDataDecoder
82  {
83  protected:
84  static std::unique_ptr<Asn1Record> decodeAsn1Data(const std::string& rawData,
85  std::vector<uint8_t>& rawDataBytes);
86  };
87 
90  class X509BasicConstraintsDataDecoder : public X509ExtensionDataDecoder
91  {
92  public:
96  static std::unique_ptr<X509BasicConstraintsDataDecoder> create(const std::string& rawData);
97 
99  bool isCA() const
100  {
101  return m_IsCA;
102  }
103 
105  int getPathLenConstraint() const
106  {
107  return m_PathLenConstraint;
108  }
109 
110  private:
111  X509BasicConstraintsDataDecoder(bool isCA, int pathLenConstraint)
112  : m_IsCA(isCA), m_PathLenConstraint(pathLenConstraint)
113  {}
114  static constexpr int isCAOffset = 0;
115  static constexpr int pathLenConstraintOffset = 1;
116 
117  bool m_IsCA = false;
118  int m_PathLenConstraint = 0;
119  };
120 
123  class X509SubjectKeyIdentifierDataDecoder : public X509ExtensionDataDecoder
124  {
125  public:
129  static std::unique_ptr<X509SubjectKeyIdentifierDataDecoder> create(const std::string& rawData);
130 
132  const std::string& getKeyIdentifier() const
133  {
134  return m_KeyIdentifier;
135  }
136 
137  private:
138  X509SubjectKeyIdentifierDataDecoder(const std::string& keyIdentifier) : m_KeyIdentifier(keyIdentifier)
139  {}
140  std::string m_KeyIdentifier;
141  };
142 
145  class X509KeyUsageDataDecoder : public X509ExtensionDataDecoder
146  {
147  public:
151  static std::unique_ptr<X509KeyUsageDataDecoder> create(const std::string& rawData);
152 
154  const std::string& getKeyUsage() const
155  {
156  return m_KeyUsage;
157  }
158 
159  private:
160  X509KeyUsageDataDecoder(const std::string& keyUsage) : m_KeyUsage(keyUsage)
161  {}
162  std::string m_KeyUsage;
163  };
164 
167  class X509ExtendedKeyUsageDataDecoder : public X509ExtensionDataDecoder
168  {
169  public:
173  static std::unique_ptr<X509ExtendedKeyUsageDataDecoder> create(const std::string& rawData);
174 
176  const std::vector<Asn1ObjectIdentifier>& getExtendedKeyUsagePurposes() const
177  {
178  return m_ExtendedKeyUsagePurposes;
179  }
180 
181  private:
182  X509ExtendedKeyUsageDataDecoder()
183  {}
184  std::vector<Asn1ObjectIdentifier> m_ExtendedKeyUsagePurposes;
185  };
186  } // namespace X509Internal
187 
188  // Forward declarations
189  class X509Extension;
190 
193  class X509ExtensionData
194  {
195  friend class X509Extension;
196 
197  public:
198  virtual ~X509ExtensionData() = default;
199 
205  template <class X509ExtensionDataType> X509ExtensionDataType* castAs()
206  {
207  auto castedExtension = dynamic_cast<X509ExtensionDataType*>(this);
208  if (castedExtension == nullptr)
209  {
210  throw std::runtime_error("Trying to cast X509 extension data to the wrong type");
211  }
212  return castedExtension;
213  }
214  };
215 
218  class X509BasicConstraintsExtension : public X509ExtensionData
219  {
220  friend class X509Extension;
221 
222  public:
224  bool isCA() const
225  {
226  return m_IsCA;
227  }
228 
230  int getPathLenConstraint() const
231  {
232  return m_PathLenConstraint;
233  }
234 
235  private:
236  explicit X509BasicConstraintsExtension(const std::string& rawExtensionData);
237  bool m_IsCA = false;
238  int m_PathLenConstraint = 0;
239  };
240 
243  class X509SubjectKeyIdentifierExtension : public X509ExtensionData
244  {
245  friend class X509Extension;
246 
247  public:
249  std::string getKeyIdentifier() const
250  {
251  return m_KeyIdentifier;
252  };
253 
254  private:
255  explicit X509SubjectKeyIdentifierExtension(const std::string& rawExtensionData);
256  std::string m_KeyIdentifier;
257  };
258 
261  class X509KeyUsageExtension : public X509ExtensionData
262  {
263  friend class X509Extension;
264 
265  public:
267  bool isDigitalSignature() const;
268 
270  bool isNonRepudiation() const;
271 
273  bool isKeyEncipherment() const;
274 
276  bool isDataEncipherment() const;
277 
279  bool isKeyAgreement() const;
280 
282  bool isKeyCertSign() const;
283 
285  bool isCRLSign() const;
286 
288  bool isEncipherOnly() const;
289 
291  bool isDecipherOnly() const;
292 
293  private:
294  explicit X509KeyUsageExtension(const std::string& rawExtensionData);
295 
296  static constexpr int digitalSignatureLocation = 0;
297  static constexpr int nonRepudiationLocation = 1;
298  static constexpr int keyEnciphermentLocation = 2;
299  static constexpr int dataEnciphermentLocation = 3;
300  static constexpr int keyAgreementLocation = 4;
301  static constexpr int keyCertSignLocation = 5;
302  static constexpr int crlSignLocation = 6;
303  static constexpr int encipherOnlyLocation = 7;
304  static constexpr int decipherOnlyLocation = 8;
305 
306  bool isBitSet(size_t location) const;
307  std::string m_BitString;
308  };
309 
312  class X509ExtendedKeyUsageExtension : public X509ExtensionData
313  {
314  friend class X509Extension;
315 
316  public:
318  const std::vector<X509ExtendedKeyUsagePurpose>& getPurposes() const
319  {
320  return m_Purposes;
321  }
322 
323  private:
324  explicit X509ExtendedKeyUsageExtension(const std::string& rawExtensionData);
325  std::vector<X509ExtendedKeyUsagePurpose> m_Purposes;
326  };
327 } // namespace pcpp
pcpp::Asn1ObjectIdentifier
Definition: Asn1Codec.h:665
pcpp::X509BasicConstraintsExtension
Definition: X509ExtensionDataDecoder.h:219
pcpp::X509BasicConstraintsExtension::getPathLenConstraint
int getPathLenConstraint() const
Definition: X509ExtensionDataDecoder.h:230
pcpp::X509BasicConstraintsExtension::isCA
bool isCA() const
Definition: X509ExtensionDataDecoder.h:224
pcpp::X509ExtendedKeyUsageExtension
Definition: X509ExtensionDataDecoder.h:313
pcpp::X509ExtendedKeyUsageExtension::getPurposes
const std::vector< X509ExtendedKeyUsagePurpose > & getPurposes() const
Definition: X509ExtensionDataDecoder.h:318
pcpp::X509ExtendedKeyUsagePurpose
Definition: X509ExtensionDataDecoder.h:11
pcpp::X509ExtendedKeyUsagePurpose::fromOidValue
static X509ExtendedKeyUsagePurpose fromOidValue(const Asn1ObjectIdentifier &value)
pcpp::X509ExtendedKeyUsagePurpose::Value
Value
Define enum types for extended key usage purposes.
Definition: X509ExtensionDataDecoder.h:15
pcpp::X509ExtendedKeyUsagePurpose::IPSecUser
@ IPSecUser
IPsec user.
Definition: X509ExtensionDataDecoder.h:33
pcpp::X509ExtendedKeyUsagePurpose::IPSecTunnel
@ IPSecTunnel
IPsec tunnel.
Definition: X509ExtensionDataDecoder.h:31
pcpp::X509ExtendedKeyUsagePurpose::IPSecEndSystem
@ IPSecEndSystem
IPsec end system.
Definition: X509ExtensionDataDecoder.h:29
pcpp::X509ExtendedKeyUsagePurpose::ClientAuth
@ ClientAuth
Client authentication.
Definition: X509ExtensionDataDecoder.h:19
pcpp::X509ExtendedKeyUsagePurpose::EmailProtection
@ EmailProtection
Email protection.
Definition: X509ExtensionDataDecoder.h:23
pcpp::X509ExtendedKeyUsagePurpose::CodeSigning
@ CodeSigning
Code signing.
Definition: X509ExtensionDataDecoder.h:21
pcpp::X509ExtendedKeyUsagePurpose::SmartCardLogon
@ SmartCardLogon
Smart card logon.
Definition: X509ExtensionDataDecoder.h:37
pcpp::X509ExtendedKeyUsagePurpose::ServerAuth
@ ServerAuth
Server authentication.
Definition: X509ExtensionDataDecoder.h:17
pcpp::X509ExtendedKeyUsagePurpose::EncryptedFileSystem
@ EncryptedFileSystem
Encrypted file system.
Definition: X509ExtensionDataDecoder.h:39
pcpp::X509ExtendedKeyUsagePurpose::TimeStamping
@ TimeStamping
Time stamping.
Definition: X509ExtensionDataDecoder.h:25
pcpp::X509ExtendedKeyUsagePurpose::Unknown
@ Unknown
Unknown purpose value.
Definition: X509ExtensionDataDecoder.h:43
pcpp::X509ExtendedKeyUsagePurpose::DocumentSigning
@ DocumentSigning
Document signing.
Definition: X509ExtensionDataDecoder.h:41
pcpp::X509ExtendedKeyUsagePurpose::OCSPSigning
@ OCSPSigning
OCSP signing.
Definition: X509ExtensionDataDecoder.h:27
pcpp::X509ExtendedKeyUsagePurpose::getOidValue
std::string getOidValue() const
pcpp::X509ExtensionData
Definition: X509ExtensionDataDecoder.h:194
pcpp::X509ExtensionData::castAs
X509ExtensionDataType * castAs()
Definition: X509ExtensionDataDecoder.h:205
pcpp::X509Extension
Definition: X509Decoder.h:705
pcpp::X509Internal::X509BasicConstraintsDataDecoder
Definition: X509ExtensionDataDecoder.h:91
pcpp::X509Internal::X509BasicConstraintsDataDecoder::isCA
bool isCA() const
Definition: X509ExtensionDataDecoder.h:99
pcpp::X509Internal::X509BasicConstraintsDataDecoder::getPathLenConstraint
int getPathLenConstraint() const
Definition: X509ExtensionDataDecoder.h:105
pcpp::X509Internal::X509BasicConstraintsDataDecoder::create
static std::unique_ptr< X509BasicConstraintsDataDecoder > create(const std::string &rawData)
pcpp::X509Internal::X509ExtendedKeyUsageDataDecoder
Definition: X509ExtensionDataDecoder.h:168
pcpp::X509Internal::X509ExtendedKeyUsageDataDecoder::getExtendedKeyUsagePurposes
const std::vector< Asn1ObjectIdentifier > & getExtendedKeyUsagePurposes() const
Definition: X509ExtensionDataDecoder.h:176
pcpp::X509Internal::X509ExtendedKeyUsageDataDecoder::create
static std::unique_ptr< X509ExtendedKeyUsageDataDecoder > create(const std::string &rawData)
pcpp::X509Internal::X509ExtensionDataDecoder
Definition: X509ExtensionDataDecoder.h:82
pcpp::X509Internal::X509KeyUsageDataDecoder
Definition: X509ExtensionDataDecoder.h:146
pcpp::X509Internal::X509KeyUsageDataDecoder::getKeyUsage
const std::string & getKeyUsage() const
Definition: X509ExtensionDataDecoder.h:154
pcpp::X509Internal::X509KeyUsageDataDecoder::create
static std::unique_ptr< X509KeyUsageDataDecoder > create(const std::string &rawData)
pcpp::X509Internal::X509SubjectKeyIdentifierDataDecoder
Definition: X509ExtensionDataDecoder.h:124
pcpp::X509Internal::X509SubjectKeyIdentifierDataDecoder::create
static std::unique_ptr< X509SubjectKeyIdentifierDataDecoder > create(const std::string &rawData)
pcpp::X509Internal::X509SubjectKeyIdentifierDataDecoder::getKeyIdentifier
const std::string & getKeyIdentifier() const
Definition: X509ExtensionDataDecoder.h:132
pcpp::X509KeyUsageExtension
Definition: X509ExtensionDataDecoder.h:262
pcpp::X509SubjectKeyIdentifierExtension
Definition: X509ExtensionDataDecoder.h:244
pcpp::X509SubjectKeyIdentifierExtension::getKeyIdentifier
std::string getKeyIdentifier() const
Definition: X509ExtensionDataDecoder.h:249
pcpp
The main namespace for the PcapPlusPlus lib.