net/quic/crypto/crypto_server_config.cc - Issue 26471007: QUIC: don't ignore SetKey and SetNoncePrefix return values.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/quic/crypto/crypto_server_config.cc

Issue 26471007: QUIC: don't ignore SetKey and SetNoncePrefix return values. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Merging with tip Created 7 years, 2 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/quic/crypto/crypto_server_config.cc

diff --git a/net/quic/crypto/crypto_server_config.cc b/net/quic/crypto/crypto_server_config.cc

index 7c7d0ff7f767252e33e3e50860dca6c92971b789..4ff51c438992e9cd5c569875aa9fec04a1b0367c 100644

--- a/net/quic/crypto/crypto_server_config.cc

+++ b/net/quic/crypto/crypto_server_config.cc

@@ -449,9 +449,12 @@ QuicErrorCode QuicCryptoServerConfig::ProcessClientHello(

hkdf_input.append(requested_config->serialized);

CrypterPair crypters;

- CryptoUtils::DeriveKeys(params->initial_premaster_secret, params->aead,

- info.client_nonce, info.server_nonce, hkdf_input,

- CryptoUtils::SERVER, &crypters);

+ if (!CryptoUtils::DeriveKeys(params->initial_premaster_secret, params->aead,

+ info.client_nonce, info.server_nonce,

+ hkdf_input, CryptoUtils::SERVER, &crypters)) {

+ *error_details = "Symmetric key setup failed";

+ return QUIC_CRYPTO_SYMMETRIC_KEY_SETUP_FAILED;

+ }

scoped_ptr<QuicData> cetv_plaintext(crypters.decrypter->DecryptPacket(

0 /* sequence number */, StringPiece() /* associated data */,

@@ -486,9 +489,13 @@ QuicErrorCode QuicCryptoServerConfig::ProcessClientHello(

hkdf_input.append(QuicCryptoConfig::kInitialLabel, label_len);

hkdf_input.append(hkdf_suffix);

- CryptoUtils::DeriveKeys(params->initial_premaster_secret, params->aead,

- info.client_nonce, info.server_nonce, hkdf_input,

- CryptoUtils::SERVER, &params->initial_crypters);

+ if (!CryptoUtils::DeriveKeys(params->initial_premaster_secret, params->aead,

+ info.client_nonce, info.server_nonce, hkdf_input,

+ CryptoUtils::SERVER,

+ &params->initial_crypters)) {

+ *error_details = "Symmetric key setup failed";

+ return QUIC_CRYPTO_SYMMETRIC_KEY_SETUP_FAILED;

+ }

string forward_secure_public_value;

if (ephemeral_key_source_.get()) {

@@ -515,10 +522,13 @@ QuicErrorCode QuicCryptoServerConfig::ProcessClientHello(

label_len);

forward_secure_hkdf_input.append(hkdf_suffix);

- CryptoUtils::DeriveKeys(params->forward_secure_premaster_secret, params->aead,

- info.client_nonce, info.server_nonce,

- forward_secure_hkdf_input, CryptoUtils::SERVER,

- &params->forward_secure_crypters);

+ if (!CryptoUtils::DeriveKeys(

+ params->forward_secure_premaster_secret, params->aead,

+ info.client_nonce, info.server_nonce, forward_secure_hkdf_input,

+ CryptoUtils::SERVER, &params->forward_secure_crypters)) {

+ *error_details = "Symmetric key setup failed";

+ return QUIC_CRYPTO_SYMMETRIC_KEY_SETUP_FAILED;

+ }

out->set_tag(kSHLO);

out->SetStringPiece(kSourceAddressTokenTag,

« no previous file with comments | « net/quic/crypto/crypto_handshake.cc ('k') | net/quic/crypto/crypto_utils.h » ('j') | net/quic/crypto/crypto_utils.h » ('J')