Google Git
Sign in
quiche / quiche / 83760d3323bb88e46761382cb17f0ea3e62ebc63
commit83760d3323bb88e46761382cb17f0ea3e62ebc63[log] [tgz]
authorQUICHE team <quiche-dev@google.com>Fri Jan 24 13:18:40 2020 -0800
committerCopybara-Service <copybara-worker@google.com>Fri Jan 24 13:19:13 2020 -0800
tree03bc050e8acdaf7c8691157f653228aa3c6ec253
parent2f2915d4697d68e0c28bf6392b8ba7ae48ecf95d [diff]
Add a ServerProofVerifier interface to QUIC.

This is a server-side equivalent of ProofVerifier.  It is used to verify a
client's certificate chain.  It will only be used when the server needs to
request client certificates.

ServerProofVerifier drops the VerifyProof() function (not used in TLS 1.3) and
the |hostname|, |ocsp_response|, and |cert_sct| parameters of VerifyCertChain()
(those aren't really meaningful to a server).

See go/quic-tls-client-certificates for the full design doc and context.

gfe-relnote: no functional changes (only adds an interface).
PiperOrigin-RevId: 291429810
Change-Id: Ifd7deb6e72294b2626572b6555e3b5e2976b286e
1 file changed
tree: 03bc050e8acdaf7c8691157f653228aa3c6ec253
  1. common/
  2. epoll_server/
  3. http2/
  4. quic/
  5. spdy/
  6. CONTRIBUTING.md
  7. LICENSE
  8. README.md
README.md

QUICHE

QUICHE (QUIC, Http/2, Etc) is Google‘s implementation of QUIC and related protocols. It powers Chromium as well as Google’s QUIC servers and some other projects.