1// Copyright 2021 Google LLC
2//
3// Licensed under the Apache License, Version 2.0 (the "License");
4// you may not use this file except in compliance with the License.
5// You may obtain a copy of the License at
6//
7// https://www.apache.org/licenses/LICENSE-2.0
8//
9// Unless required by applicable law or agreed to in writing, software
10// distributed under the License is distributed on an "AS IS" BASIS,
11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12// See the License for the specific language governing permissions and
13// limitations under the License.
14
15syntax = "proto3";
16
17package s2a.proto;
18
19option go_package = "github.com/google/s2a/internal/proto/s2a_context_go_proto";
20
21import "internal/proto/common/common.proto";
22
23message S2AContext {
24 // The application protocol negotiated for this connection, e.g., 'grpc'.
25 string application_protocol = 1;
26
27 // The TLS version number that the S2A's handshaker module used to set up the
28 // session.
29 TLSVersion tls_version = 2;
30
31 // The TLS ciphersuite negotiated by the S2A's handshaker module.
32 Ciphersuite ciphersuite = 3;
33
34 // The authenticated identity of the peer.
35 Identity peer_identity = 4;
36
37 // The local identity used during session setup. This could be:
38 // - The local identity that the client specifies in ClientSessionStartReq.
39 // - One of the local identities that the server specifies in
40 // ServerSessionStartReq.
41 // - If neither client or server specifies local identities, the S2A picks the
42 // default one. In this case, this field will contain that identity.
43 Identity local_identity = 5;
44
45 // The SHA256 hash of the peer certificate used in the handshake.
46 bytes peer_cert_fingerprint = 6;
47
48 // The SHA256 hash of the local certificate used in the handshake.
49 bytes local_cert_fingerprint = 7;
50
51 // Set to true if a cached session was reused to resume the handshake.
52 bool is_handshake_resumed = 8;
53}
View as plain text