blob: d37472266efc676e29b75832b1499659e2f0a331 [file] [log] [blame]
// Copyright (c) 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include <cstddef>
#include "base/macros.h"
#include "third_party/boringssl/src/include/openssl/aead.h"
#include "net/third_party/quiche/src/quic/core/crypto/quic_decrypter.h"
#include "net/third_party/quiche/src/quic/platform/api/quic_export.h"
#include "net/third_party/quiche/src/quic/platform/api/quic_string_piece.h"
namespace quic {
// AeadBaseDecrypter is the base class of AEAD QuicDecrypter subclasses.
class QUIC_EXPORT_PRIVATE AeadBaseDecrypter : public QuicDecrypter {
// This takes the function pointer rather than the EVP_AEAD itself so
// subclasses do not need to call CRYPTO_library_init.
AeadBaseDecrypter(const EVP_AEAD* (*aead_getter)(),
size_t key_size,
size_t auth_tag_size,
size_t nonce_size,
bool use_ietf_nonce_construction);
AeadBaseDecrypter(const AeadBaseDecrypter&) = delete;
AeadBaseDecrypter& operator=(const AeadBaseDecrypter&) = delete;
~AeadBaseDecrypter() override;
// QuicDecrypter implementation
bool SetKey(QuicStringPiece key) override;
bool SetNoncePrefix(QuicStringPiece nonce_prefix) override;
bool SetIV(QuicStringPiece iv) override;
bool SetPreliminaryKey(QuicStringPiece key) override;
bool SetDiversificationNonce(const DiversificationNonce& nonce) override;
bool DecryptPacket(uint64_t packet_number,
QuicStringPiece associated_data,
QuicStringPiece ciphertext,
char* output,
size_t* output_length,
size_t max_output_length) override;
size_t GetKeySize() const override;
size_t GetIVSize() const override;
QuicStringPiece GetKey() const override;
QuicStringPiece GetNoncePrefix() const override;
// Make these constants available to the subclasses so that the subclasses
// can assert at compile time their key_size_ and nonce_size_ do not
// exceed the maximum.
static const size_t kMaxKeySize = 32;
static const size_t kMaxNonceSize = 12;
const EVP_AEAD* const aead_alg_;
const size_t key_size_;
const size_t auth_tag_size_;
const size_t nonce_size_;
const bool use_ietf_nonce_construction_;
bool have_preliminary_key_;
// The key.
unsigned char key_[kMaxKeySize];
// The IV used to construct the nonce.
unsigned char iv_[kMaxNonceSize];
bssl::ScopedEVP_AEAD_CTX ctx_;
} // namespace quic