Allow masque_server to check signature auth on GET requests

This CL refactors requests handling such that it is now possible to route GET requests through the MASQUE handling to check signature auth for them.

This CL also fixes one more bug in HTTP signature auth. Since "\x00" is technically a const char*, absl::StrCat treats it like a NULL-terminated C-string, causing it to treat it like the empty string. Using std::string(1, 0x00) will instead correctly tell absl::StrCat that this is a one-byte long string of NULL-byte. With this fix, we successfully achieved interop between masque_client and the http-signature-auth-go server implementation!

PiperOrigin-RevId: 600137791
5 files changed
tree: dc3913d795ef5dfd4ab6dcf014b7641ad6d0ebdc
  1. build/
  2. depstool/
  3. quiche/
  4. .bazelrc
  5. .bazelversion
  6. BUILD.bazel
  11. WORKSPACE.bazel


QUICHE stands for QUIC, Http, Etc. It is Google‘s production-ready implementation of QUIC, HTTP/2, HTTP/3, and related protocols and tools. It powers Google’s servers, Chromium, Envoy, and other projects. It is actively developed and maintained.

There are two public QUICHE repositories. Either one may be used by embedders, as they are automatically kept in sync:

To embed QUICHE in your project, platform APIs need to be implemented and build files need to be created. Note that it is on the QUICHE team's roadmap to include default implementation for all platform APIs and to open-source build files. In the meanwhile, take a look at open source embedders like Chromium and Envoy to get started:

To contribute to QUICHE, follow instructions at

QUICHE is only supported on little-endian platforms.