blob: fa349359571efd9de8a6044d3caa0c624f478829 [file] [log] [blame]
// Copyright (c) 2018 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef QUICHE_QUIC_CORE_CRYPTO_TRANSPORT_PARAMETERS_H_
#define QUICHE_QUIC_CORE_CRYPTO_TRANSPORT_PARAMETERS_H_
#include <memory>
#include <vector>
#include "absl/container/flat_hash_map.h"
#include "absl/strings/string_view.h"
#include "absl/types/optional.h"
#include "quic/core/quic_connection_id.h"
#include "quic/core/quic_data_reader.h"
#include "quic/core/quic_data_writer.h"
#include "quic/core/quic_tag.h"
#include "quic/core/quic_types.h"
#include "quic/core/quic_versions.h"
#include "quic/platform/api/quic_containers.h"
#include "quic/platform/api/quic_socket_address.h"
namespace quic {
// TransportParameters contains parameters for QUIC's transport layer that are
// exchanged during the TLS handshake. This struct is a mirror of the struct in
// the "Transport Parameter Encoding" section of draft-ietf-quic-transport.
// This struct currently uses the values from draft 29.
struct QUIC_EXPORT_PRIVATE TransportParameters {
// The identifier used to differentiate transport parameters.
enum TransportParameterId : uint64_t;
// A map used to specify custom parameters.
using ParameterMap = absl::flat_hash_map<TransportParameterId, std::string>;
// Represents an individual QUIC transport parameter that only encodes a
// variable length integer. Can only be created inside the constructor for
// TransportParameters.
class QUIC_EXPORT_PRIVATE IntegerParameter {
public:
// Forbid constructing and copying apart from TransportParameters.
IntegerParameter() = delete;
IntegerParameter& operator=(const IntegerParameter&) = delete;
// Sets the value of this transport parameter.
void set_value(uint64_t value);
// Gets the value of this transport parameter.
uint64_t value() const;
// Validates whether the current value is valid.
bool IsValid() const;
// Writes to a crypto byte buffer, used during serialization. Does not write
// anything if the value is equal to the parameter's default value.
// Returns whether the write was successful.
bool Write(QuicDataWriter* writer) const;
// Reads from a crypto byte string, used during parsing.
// Returns whether the read was successful.
// On failure, this method will write a human-readable error message to
// |error_details|.
bool Read(QuicDataReader* reader, std::string* error_details);
// operator<< allows easily logging integer transport parameters.
friend QUIC_EXPORT_PRIVATE std::ostream& operator<<(
std::ostream& os,
const IntegerParameter& param);
private:
friend struct TransportParameters;
// Constructors for initial setup used by TransportParameters only.
// This constructor sets |default_value| and |min_value| to 0, and
// |max_value| to kVarInt62MaxValue.
explicit IntegerParameter(TransportParameterId param_id);
IntegerParameter(TransportParameterId param_id,
uint64_t default_value,
uint64_t min_value,
uint64_t max_value);
IntegerParameter(const IntegerParameter& other) = default;
IntegerParameter(IntegerParameter&& other) = default;
// Human-readable string representation.
std::string ToString(bool for_use_in_list) const;
// Number used to indicate this transport parameter.
TransportParameterId param_id_;
// Current value of the transport parameter.
uint64_t value_;
// Default value of this transport parameter, as per IETF specification.
const uint64_t default_value_;
// Minimum value of this transport parameter, as per IETF specification.
const uint64_t min_value_;
// Maximum value of this transport parameter, as per IETF specification.
const uint64_t max_value_;
// Ensures this parameter is not parsed twice in the same message.
bool has_been_read_;
};
// Represents the preferred_address transport parameter that a server can
// send to clients.
struct QUIC_EXPORT_PRIVATE PreferredAddress {
PreferredAddress();
PreferredAddress(const PreferredAddress& other) = default;
PreferredAddress(PreferredAddress&& other) = default;
~PreferredAddress();
bool operator==(const PreferredAddress& rhs) const;
bool operator!=(const PreferredAddress& rhs) const;
QuicSocketAddress ipv4_socket_address;
QuicSocketAddress ipv6_socket_address;
QuicConnectionId connection_id;
std::vector<uint8_t> stateless_reset_token;
// Allows easily logging.
std::string ToString() const;
friend QUIC_EXPORT_PRIVATE std::ostream& operator<<(
std::ostream& os,
const TransportParameters& params);
};
// LegacyVersionInformation represents the Google QUIC downgrade prevention
// mechanism ported to QUIC+TLS. It is exchanged using transport parameter ID
// 0x4752 and will eventually be deprecated in favor of
// draft-ietf-quic-version-negotiation.
struct QUIC_EXPORT_PRIVATE LegacyVersionInformation {
LegacyVersionInformation();
LegacyVersionInformation(const LegacyVersionInformation& other) = default;
LegacyVersionInformation& operator=(const LegacyVersionInformation& other) =
default;
LegacyVersionInformation& operator=(LegacyVersionInformation&& other) =
default;
LegacyVersionInformation(LegacyVersionInformation&& other) = default;
~LegacyVersionInformation() = default;
bool operator==(const LegacyVersionInformation& rhs) const;
bool operator!=(const LegacyVersionInformation& rhs) const;
// When sent by the client, |version| is the initial version offered by the
// client (before any version negotiation packets) for this connection. When
// sent by the server, |version| is the version that is in use.
QuicVersionLabel version;
// When sent by the server, |supported_versions| contains a list of all
// versions that the server would send in a version negotiation packet. When
// sent by the client, this is empty.
QuicVersionLabelVector supported_versions;
// Allows easily logging.
std::string ToString() const;
friend QUIC_EXPORT_PRIVATE std::ostream& operator<<(
std::ostream& os,
const LegacyVersionInformation& legacy_version_information);
};
// Version information used for version downgrade prevention and compatible
// version negotiation. See draft-ietf-quic-version-negotiation-05.
struct QUIC_EXPORT_PRIVATE VersionInformation {
VersionInformation();
VersionInformation(const VersionInformation& other) = default;
VersionInformation& operator=(const VersionInformation& other) = default;
VersionInformation& operator=(VersionInformation&& other) = default;
VersionInformation(VersionInformation&& other) = default;
~VersionInformation() = default;
bool operator==(const VersionInformation& rhs) const;
bool operator!=(const VersionInformation& rhs) const;
// Version that the sender has chosen to use on this connection.
QuicVersionLabel chosen_version;
// When sent by the client, |other_versions| contains all the versions that
// this first flight is compatible with. When sent by the server,
// |other_versions| contains all of the versions supported by the server.
QuicVersionLabelVector other_versions;
// Allows easily logging.
std::string ToString() const;
friend QUIC_EXPORT_PRIVATE std::ostream& operator<<(
std::ostream& os, const VersionInformation& version_information);
};
TransportParameters();
TransportParameters(const TransportParameters& other);
~TransportParameters();
bool operator==(const TransportParameters& rhs) const;
bool operator!=(const TransportParameters& rhs) const;
// Represents the sender of the transport parameters. When |perspective| is
// Perspective::IS_CLIENT, this struct is being used in the client_hello
// handshake message; when it is Perspective::IS_SERVER, it is being used in
// the encrypted_extensions handshake message.
Perspective perspective;
// Google QUIC downgrade prevention mechanism sent over QUIC+TLS.
absl::optional<LegacyVersionInformation> legacy_version_information;
// IETF downgrade prevention and compatible version negotiation, see
// draft-ietf-quic-version-negotiation.
absl::optional<VersionInformation> version_information;
// The value of the Destination Connection ID field from the first
// Initial packet sent by the client.
absl::optional<QuicConnectionId> original_destination_connection_id;
// Maximum idle timeout expressed in milliseconds.
IntegerParameter max_idle_timeout_ms;
// Stateless reset token used in verifying stateless resets.
std::vector<uint8_t> stateless_reset_token;
// Limits the size of packets that the endpoint is willing to receive.
// This indicates that packets larger than this limit will be dropped.
IntegerParameter max_udp_payload_size;
// Contains the initial value for the maximum amount of data that can
// be sent on the connection.
IntegerParameter initial_max_data;
// Initial flow control limit for locally-initiated bidirectional streams.
IntegerParameter initial_max_stream_data_bidi_local;
// Initial flow control limit for peer-initiated bidirectional streams.
IntegerParameter initial_max_stream_data_bidi_remote;
// Initial flow control limit for unidirectional streams.
IntegerParameter initial_max_stream_data_uni;
// Initial maximum number of bidirectional streams the peer may initiate.
IntegerParameter initial_max_streams_bidi;
// Initial maximum number of unidirectional streams the peer may initiate.
IntegerParameter initial_max_streams_uni;
// Exponent used to decode the ACK Delay field in ACK frames.
IntegerParameter ack_delay_exponent;
// Maximum amount of time in milliseconds by which the endpoint will
// delay sending acknowledgments.
IntegerParameter max_ack_delay;
// Minimum amount of time in microseconds by which the endpoint will
// delay sending acknowledgments. Used to enable sender control of ack delay.
IntegerParameter min_ack_delay_us;
// Indicates lack of support for connection migration.
bool disable_active_migration;
// Used to effect a change in server address at the end of the handshake.
std::unique_ptr<PreferredAddress> preferred_address;
// Maximum number of connection IDs from the peer that an endpoint is willing
// to store.
IntegerParameter active_connection_id_limit;
// The value that the endpoint included in the Source Connection ID field of
// the first Initial packet it sent.
absl::optional<QuicConnectionId> initial_source_connection_id;
// The value that the server included in the Source Connection ID field of a
// Retry packet it sent.
absl::optional<QuicConnectionId> retry_source_connection_id;
// Indicates support for the DATAGRAM frame and the maximum frame size that
// the sender accepts. See draft-ietf-quic-datagram.
IntegerParameter max_datagram_frame_size;
// Google-specific transport parameter that carries an estimate of the
// initial round-trip time in microseconds.
IntegerParameter initial_round_trip_time_us;
// Google-specific connection options.
absl::optional<QuicTagVector> google_connection_options;
// Google-specific user agent identifier.
absl::optional<std::string> user_agent_id;
// Google-specific mechanism to indicate that IETF QUIC Key Update has not
// yet been implemented. This will be removed once we implement it.
bool key_update_not_yet_supported;
// Validates whether transport parameters are valid according to
// the specification. If the transport parameters are not valid, this method
// will write a human-readable error message to |error_details|.
bool AreValid(std::string* error_details) const;
// Custom parameters that may be specific to application protocol.
ParameterMap custom_parameters;
// Allows easily logging transport parameters.
std::string ToString() const;
friend QUIC_EXPORT_PRIVATE std::ostream& operator<<(
std::ostream& os,
const TransportParameters& params);
};
// Serializes a TransportParameters struct into the format for sending it in a
// TLS extension. The serialized bytes are written to |*out|. Returns if the
// parameters are valid and serialization succeeded.
QUIC_EXPORT_PRIVATE bool SerializeTransportParameters(
ParsedQuicVersion version,
const TransportParameters& in,
std::vector<uint8_t>* out);
// Parses bytes from the quic_transport_parameters TLS extension and writes the
// parsed parameters into |*out|. Input is read from |in| for |in_len| bytes.
// |perspective| indicates whether the input came from a client or a server.
// This method returns true if the input was successfully parsed.
// On failure, this method will write a human-readable error message to
// |error_details|.
QUIC_EXPORT_PRIVATE bool ParseTransportParameters(ParsedQuicVersion version,
Perspective perspective,
const uint8_t* in,
size_t in_len,
TransportParameters* out,
std::string* error_details);
// Serializes |in| and |application_data| in a deterministic format so that
// multiple calls to SerializeTransportParametersForTicket with the same inputs
// will generate the same output, and if the inputs differ, then the output will
// differ. The output of this function is used by the server in
// SSL_set_quic_early_data_context to determine whether early data should be
// accepted: Early data will only be accepted if the inputs to this function
// match what they were on the connection that issued an early data capable
// ticket.
QUIC_EXPORT_PRIVATE bool SerializeTransportParametersForTicket(
const TransportParameters& in,
const std::vector<uint8_t>& application_data,
std::vector<uint8_t>* out);
} // namespace quic
#endif // QUICHE_QUIC_CORE_CRYPTO_TRANSPORT_PARAMETERS_H_