tlsstate.h

Go to the documentation of this file.

/* 2020-2026 Quantum Resistant Cryptographic Solutions Corporation
 * All Rights Reserved.
 *
 * NOTICE:
 * This software and all accompanying materials are the exclusive property of
 * Quantum Resistant Cryptographic Solutions Corporation (QRCS). The intellectual
 * and technical concepts contained herein are proprietary to QRCS and are
 * protected under applicable Canadian, U.S., and international copyright,
 * patent, and trade secret laws.
 *
 * CRYPTOGRAPHIC ALGORITHMS AND IMPLEMENTATIONS:
 * - This software includes implementations of cryptographic primitives and
 *   algorithms that are standardized or in the public domain, such as AES
 *   and SHA-3, which are not proprietary to QRCS.
 * - This software also includes cryptographic primitives, constructions, and
 *   algorithms designed by QRCS, including but not limited to RCS, SCB, CSX, QMAC, and
 *   related components, which are proprietary to QRCS.
 * - All source code, implementations, protocol compositions, optimizations,
 *   parameter selections, and engineering work contained in this software are
 *   original works of QRCS and are protected under this license.
 *
 * LICENSE AND USE RESTRICTIONS:
 * - This software is licensed under the Quantum Resistant Cryptographic Solutions
 *   Public Research and Evaluation License (QRCS-PREL), 2025-2026.
 * - Permission is granted solely for non-commercial evaluation, academic research,
 *   cryptographic analysis, interoperability testing, and feasibility assessment.
 * - Commercial use, production deployment, commercial redistribution, or
 *   integration into products or services is strictly prohibited without a
 *   separate written license agreement executed with QRCS.
 * - Licensing and authorized distribution are solely at the discretion of QRCS.
 *
 * EXPERIMENTAL CRYPTOGRAPHY NOTICE:
 * Portions of this software may include experimental, novel, or evolving
 * cryptographic designs. Use of this software is entirely at the user's risk.
 *
 * DISCLAIMER:
 * THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 * IMPLIED, INCLUDING BUT NOT LIMITED TO WARRANTIES OF MERCHANTABILITY, FITNESS
 * FOR A PARTICULAR PURPOSE, SECURITY, OR NON-INFRINGEMENT. QRCS DISCLAIMS ALL
 * LIABILITY FOR ANY DIRECT, INDIRECT, INCIDENTAL, OR CONSEQUENTIAL DAMAGES
 * ARISING FROM THE USE OR MISUSE OF THIS SOFTWARE.
 *
 * FULL LICENSE:
 * This software is subject to the Quantum Resistant Cryptographic Solutions
 * Public Research and Evaluation License (QRCS-PREL), 2025-2026. The complete license terms
 * are provided in the accompanying LICENSE file or at https://www.qrcscorp.ca.
 *
 * Written by: John G. Underhill
 * Contact: contact@qrcscorp.ca
 */
 
#ifndef QSC_TLS_STATE_H
#define QSC_TLS_STATE_H
 
#include "tlstypes.h"
#include "tlscert.h"
#include "sha2.h"
#include "tlslimits.h"
 
QSC_CPLUSPLUS_ENABLED_START


typedef struct qsc_tls_transcript_state
{
    qsc_tls_hash_algorithm hash; 
    bool initialized; 
    union
    {
        qsc_sha256_state sha256; 
        qsc_sha384_state sha384; 
        qsc_sha512_state sha512; 
    } ctx; 
} qsc_tls_transcript_state;

typedef struct qsc_tls_record_state
{
    qsc_tls_cipher_suite suite;    
    uint8_t key[32U];        
    size_t keylen;            
    uint8_t iv[12U];      
    uint64_t sequence;      
    bool initialized;        
} qsc_tls_record_state;

typedef struct qsc_tls_alpn_protocols
{
    uint8_t protocols[QSC_TLS_MAX_ALPN_PROTOCOLS][QSC_TLS_MAX_ALPN_SIZE];   
    size_t protocollens[QSC_TLS_MAX_ALPN_PROTOCOLS];                      
    size_t protocolcount;                                          
    bool required;                                          
    bool configured;                                          
} qsc_tls_alpn_protocols;

typedef struct qsc_tls_peer_capabilities
{
    qsc_tls_named_group groups[QSC_TLS_MAX_GROUPS];                          
    size_t groupcount;                                                        
    qsc_tls_signature_scheme sigschemes[QSC_TLS_MAX_SIGNATURE_SCHEMES];      
    size_t sigschemecount;                                                    
    qsc_tls_signature_scheme certsigschemes[QSC_TLS_MAX_SIGNATURE_SCHEMES];  
    size_t certsigschemecount;                                                
} qsc_tls_peer_capabilities;

 
typedef struct qsc_tls_local_certificate_config
{
    qsc_tls_certificate_view chain[QSC_TLS_CERTIFICATE_LIST_MAX_ENTRIES];  
    size_t chainlength;                                                      
    qsc_tls_signature_scheme verifyscheme;                                  
    uint8_t verifysignature[QSC_TLS_CERTIFICATE_VERIFY_MAX_SIGNATURE_SIZE]; 
    size_t verifysignaturelen;                                                
    /* C6 fix: stored private key for the internal signing trampoline installed by
     * qsc_tls_handshake_set_local_certificate().  Zeroed by set_local_certificate
     * if a user-supplied callback is configured instead. */
    uint8_t signprivatekey[QSC_TLS_MAX_SIGNING_PRIVATE_KEY_SIZE];         
    size_t signprivatekeylen;                                              
    qsc_tls_certificate_sign_callback signcallback;                            
    void* signstate;                                                       
    bool configured;                                                      
    bool staticsignature;                                                    
} qsc_tls_local_certificate_config;

typedef struct qsc_tls_psk_state
{
    //qsc_tls_session_ticket ticket;                    /*!< Cached TLS 1.3 resumption ticket. */
    uint8_t binder[QSC_TLS_PSK_BINDER_MAX_SIZE];   
    size_t binderlen;                              
    bool enabled;                                    
    bool resumed;                                    
} qsc_tls_psk_state;
 
QSC_CPLUSPLUS_ENABLED_END
 
#endif