Mercurial > hg > nginx
comparison src/event/quic/ngx_event_quic_protection.c @ 9175:f7c9cd726298
QUIC: cleaned up now unused ngx_quic_ciphers() calls.
| author | Sergey Kandaurov <pluknet@nginx.com> |
|---|---|
| date | Fri, 20 Oct 2023 18:05:07 +0400 |
| parents | 31702c53d2db |
| children | 8dacf87e4007 |
comparison
equal
deleted
inserted
replaced
| 9174:31702c53d2db | 9175:f7c9cd726298 |
|---|---|
| 853 | 853 |
| 854 | 854 |
| 855 static ngx_int_t | 855 static ngx_int_t |
| 856 ngx_quic_create_packet(ngx_quic_header_t *pkt, ngx_str_t *res) | 856 ngx_quic_create_packet(ngx_quic_header_t *pkt, ngx_str_t *res) |
| 857 { | 857 { |
| 858 u_char *pnp, *sample; | 858 u_char *pnp, *sample; |
| 859 ngx_str_t ad, out; | 859 ngx_str_t ad, out; |
| 860 ngx_uint_t i; | 860 ngx_uint_t i; |
| 861 ngx_quic_secret_t *secret; | 861 ngx_quic_secret_t *secret; |
| 862 ngx_quic_ciphers_t ciphers; | 862 u_char nonce[NGX_QUIC_IV_LEN], mask[NGX_QUIC_HP_LEN]; |
| 863 u_char nonce[NGX_QUIC_IV_LEN], mask[NGX_QUIC_HP_LEN]; | |
| 864 | 863 |
| 865 ad.data = res->data; | 864 ad.data = res->data; |
| 866 ad.len = ngx_quic_create_header(pkt, ad.data, &pnp); | 865 ad.len = ngx_quic_create_header(pkt, ad.data, &pnp); |
| 867 | 866 |
| 868 out.len = pkt->payload.len + NGX_QUIC_TAG_LEN; | 867 out.len = pkt->payload.len + NGX_QUIC_TAG_LEN; |
| 870 | 869 |
| 871 #ifdef NGX_QUIC_DEBUG_CRYPTO | 870 #ifdef NGX_QUIC_DEBUG_CRYPTO |
| 872 ngx_log_debug2(NGX_LOG_DEBUG_EVENT, pkt->log, 0, | 871 ngx_log_debug2(NGX_LOG_DEBUG_EVENT, pkt->log, 0, |
| 873 "quic ad len:%uz %xV", ad.len, &ad); | 872 "quic ad len:%uz %xV", ad.len, &ad); |
| 874 #endif | 873 #endif |
| 875 | |
| 876 if (ngx_quic_ciphers(pkt->keys->cipher, &ciphers, pkt->level) == NGX_ERROR) | |
| 877 { | |
| 878 return NGX_ERROR; | |
| 879 } | |
| 880 | 874 |
| 881 secret = &pkt->keys->secrets[pkt->level].server; | 875 secret = &pkt->keys->secrets[pkt->level].server; |
| 882 | 876 |
| 883 ngx_memcpy(nonce, secret->iv.data, secret->iv.len); | 877 ngx_memcpy(nonce, secret->iv.data, secret->iv.len); |
| 884 ngx_quic_compute_nonce(nonce, sizeof(nonce), pkt->number); | 878 ngx_quic_compute_nonce(nonce, sizeof(nonce), pkt->number); |
| 1079 | 1073 |
| 1080 | 1074 |
| 1081 ngx_int_t | 1075 ngx_int_t |
| 1082 ngx_quic_decrypt(ngx_quic_header_t *pkt, uint64_t *largest_pn) | 1076 ngx_quic_decrypt(ngx_quic_header_t *pkt, uint64_t *largest_pn) |
| 1083 { | 1077 { |
| 1084 u_char *p, *sample; | 1078 u_char *p, *sample; |
| 1085 size_t len; | 1079 size_t len; |
| 1086 uint64_t pn, lpn; | 1080 uint64_t pn, lpn; |
| 1087 ngx_int_t pnl; | 1081 ngx_int_t pnl; |
| 1088 ngx_str_t in, ad; | 1082 ngx_str_t in, ad; |
| 1089 ngx_uint_t key_phase; | 1083 ngx_uint_t key_phase; |
| 1090 ngx_quic_secret_t *secret; | 1084 ngx_quic_secret_t *secret; |
| 1091 ngx_quic_ciphers_t ciphers; | 1085 uint8_t nonce[NGX_QUIC_IV_LEN], mask[NGX_QUIC_HP_LEN]; |
| 1092 uint8_t nonce[NGX_QUIC_IV_LEN], mask[NGX_QUIC_HP_LEN]; | |
| 1093 | |
| 1094 if (ngx_quic_ciphers(pkt->keys->cipher, &ciphers, pkt->level) == NGX_ERROR) | |
| 1095 { | |
| 1096 return NGX_ERROR; | |
| 1097 } | |
| 1098 | 1086 |
| 1099 secret = &pkt->keys->secrets[pkt->level].client; | 1087 secret = &pkt->keys->secrets[pkt->level].client; |
| 1100 | 1088 |
| 1101 p = pkt->raw->pos; | 1089 p = pkt->raw->pos; |
| 1102 len = pkt->data + pkt->len - p; | 1090 len = pkt->data + pkt->len - p; |