Use 16-byte auth tags when initial obfuscators are used QuicFramer assumes that the auth tag is the same length for all encryption levels. In Google QUIC crypto versions where initial obfuscators are used, we should use IETF style crypters (different nonce/IV construction and 16 byte instead of 12 byte auth tags). gfe-relnote: Change encryption used in QUIC. Protected by quic_enable_version_99 PiperOrigin-RevId: 271674606 Change-Id: Ic7736908068eeee8077bd3a17ec4f8b4112254f9

commit: c1bbfe64c68dfc9db2dcf760122cfbf701cfe97a [log] [tgz]
author: nharper <nharper@google.com> Fri Sep 27 16:48:40 2019 -0700
committer: Copybara-Service <copybara-worker@google.com> Tue Oct 01 12:55:56 2019 -0700
tree: 78b4bd094cfd263b9c40f7847bbadf1c49224a2b
parent: f1e3e4abecfc2ce6346e981cb5dc8c51336ab2f2 [diff] [blame]
diff --git a/quic/core/crypto/crypto_utils.h b/quic/core/crypto/crypto_utils.h
index 6f198d6..cb02dd7 100644
--- a/quic/core/crypto/crypto_utils.h
+++ b/quic/core/crypto/crypto_utils.h

@@ -123,7 +123,8 @@
   // decrypter will only be keyed to a preliminary state: a call to
   // |SetDiversificationNonce| with a diversification nonce will be needed to
   // complete keying.
-  static bool DeriveKeys(QuicStringPiece premaster_secret,
+  static bool DeriveKeys(const ParsedQuicVersion& version,
+                         QuicStringPiece premaster_secret,
                          QuicTag aead,
                          QuicStringPiece client_nonce,
                          QuicStringPiece server_nonce,
commit	c1bbfe64c68dfc9db2dcf760122cfbf701cfe97a	[log] [tgz]
author	nharper <nharper@google.com>	Fri Sep 27 16:48:40 2019 -0700
committer	Copybara-Service <copybara-worker@google.com>	Tue Oct 01 12:55:56 2019 -0700
tree	78b4bd094cfd263b9c40f7847bbadf1c49224a2b
parent	f1e3e4abecfc2ce6346e981cb5dc8c51336ab2f2 [diff] [blame]