| OLD | NEW |
|---|
| 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 #ifndef NET_QUIC_CRYPTO_CRYPTO_PROTOCOL_H_ | 5 #ifndef NET_QUIC_CRYPTO_CRYPTO_PROTOCOL_H_ |
| 6 #define NET_QUIC_CRYPTO_CRYPTO_PROTOCOL_H_ | 6 #define NET_QUIC_CRYPTO_CRYPTO_PROTOCOL_H_ |
| 7 | 7 |
| 8 #include <stddef.h> | 8 #include <stddef.h> |
| 9 #include <stdint.h> | 9 #include <stdint.h> |
| 10 | 10 |
| (...skipping 216 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 227 TAG('C', 'S', 'C', 'T'); // Signed cert timestamp (RFC6962) of leaf cert. | 227 TAG('C', 'S', 'C', 'T'); // Signed cert timestamp (RFC6962) of leaf cert. |
| 228 | 228 |
| 229 #undef TAG | 229 #undef TAG |
| 230 | 230 |
| 231 const size_t kMaxEntries = 128; // Max number of entries in a message. | 231 const size_t kMaxEntries = 128; // Max number of entries in a message. |
| 232 | 232 |
| 233 const size_t kNonceSize = 32; // Size in bytes of the connection nonce. | 233 const size_t kNonceSize = 32; // Size in bytes of the connection nonce. |
| 234 | 234 |
| 235 const size_t kOrbitSize = 8; // Number of bytes in an orbit value. | 235 const size_t kOrbitSize = 8; // Number of bytes in an orbit value. |
| 236 | 236 |
| 237 // kProofSignatureLabel is prepended to server configs before signing to avoid | |
| 238 // any cross-protocol attacks on the signature. | |
| 239 // TODO(rch): Remove this when QUIC_VERSION_30 is removed. | |
| 240 const char kProofSignatureLabelOld[] = "QUIC server config signature"; | |
| 241 | |
| 242 // kProofSignatureLabel is prepended to the CHLO hash and server configs before | 237 // kProofSignatureLabel is prepended to the CHLO hash and server configs before |
| 243 // signing to avoid any cross-protocol attacks on the signature. | 238 // signing to avoid any cross-protocol attacks on the signature. |
| 244 const char kProofSignatureLabel[] = "QUIC CHLO and server config signature"; | 239 const char kProofSignatureLabel[] = "QUIC CHLO and server config signature"; |
| 245 | 240 |
| 246 // kClientHelloMinimumSize is the minimum size of a client hello. Client hellos | 241 // kClientHelloMinimumSize is the minimum size of a client hello. Client hellos |
| 247 // will have PAD tags added in order to ensure this minimum is met and client | 242 // will have PAD tags added in order to ensure this minimum is met and client |
| 248 // hellos smaller than this will be an error. This minimum size reduces the | 243 // hellos smaller than this will be an error. This minimum size reduces the |
| 249 // amplification factor of any mirror DoS attack. | 244 // amplification factor of any mirror DoS attack. |
| 250 // | 245 // |
| 251 // A client may pad an inchoate client hello to a size larger than | 246 // A client may pad an inchoate client hello to a size larger than |
| 252 // kClientHelloMinimumSize to make it more likely to receive a complete | 247 // kClientHelloMinimumSize to make it more likely to receive a complete |
| 253 // rejection message. | 248 // rejection message. |
| 254 const size_t kClientHelloMinimumSize = 1024; | 249 const size_t kClientHelloMinimumSize = 1024; |
| 255 | 250 |
| 256 } // namespace net | 251 } // namespace net |
| 257 | 252 |
| 258 #endif // NET_QUIC_CRYPTO_CRYPTO_PROTOCOL_H_ | 253 #endif // NET_QUIC_CRYPTO_CRYPTO_PROTOCOL_H_ |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 2401363004:
relnote: Deprecate flag quic_disable_pre_32 (Closed)
