search

tintinweb / scapy-ssl_tls

SSL/TLS layers for scapy the interactive packet manipulation tool
GNU General Public License v2.0
419 stars 156 forks source link

How to create "Certificate Status"(Handshake type=22) record please? #107

Open hsl123 opened 7 years ago

hsl123 commented 7 years ago
screen shot 2017-10-06 at 4 50 39 pm
tintinweb commented 7 years ago

Hi @hsl123,

The certificate status handshake message is not yet implemented. See ssl_tls.py for a list of implemented layers. However, it should be straight forward to implement it so if you want to give it a shot we'd appreciate a pull request.

cheers, tin

ref: https://www.ietf.org/rfc/rfc6961.txt

 struct {
   CertificateStatusType status_type;
   select (status_type) {
     case ocsp: OCSPResponse;
     case ocsp_multi: OCSPResponseList;
   } response;
 } CertificateStatus;

 opaque OCSPResponse<0..2^24-1>;

 struct {
   OCSPResponse ocsp_response_list<1..2^24-1>;
 } OCSPResponseList;